OSSEM_Parser

Parser that takes the OSSEM data model as input and generates a YAML file as output.

Usage:

Generate initial data set:
python3 ossem_parser.py --ossem ../<path-to-ossem> --output yaml
Supported output formats are python, yaml, xml, and json.

Extract a subset of data. For example, just sysmon events:
python3 ossem_parser.py --ossem ../OSSEM --subset data_dictionaries.windows.sysmon

Some use cases:

Write all sysmon events to their own json files:

from data.ossem import ossem
import json
sysmon_events = ossem['OSSEM']['data_dictionaries']['windows']['sysmon']
sysmon_events = {key: sysmon_events[key] for key in sysmon_events.keys() if key.isnumeric()}
for event in sysmon_events:
    with open("event-{}.json".format(event), 'w') as fh:
        fh.write(json.dumps(sysmon_events[event]))

Name		Name	Last commit message	Last commit date
Latest commit History 37 Commits
data		data
tests		tests
.gitignore		.gitignore
LICENSE		LICENSE
README.md		README.md
ossem_parser.py		ossem_parser.py
requirements.txt		requirements.txt

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Repository files navigation

OSSEM_Parser

Usage:

Some use cases:

About

Releases

Packages

Languages

License

westwardai/OSSEM_Parser

Folders and files

Latest commit

History

Repository files navigation

OSSEM_Parser

Usage:

Some use cases:

About

Resources

License

Stars

Watchers

Forks

Releases

Packages 0

Languages

Packages