def get_events(): dsm = Manager(username="******", password="******", host="127.0.0.1", port="4119") try: print("Getting AM events") am_events = dsm.antimalware_event_retrieve(time_type="LAST_HOUR") print("Getting Webrep events") webrep_events = dsm.webrep_event_retrieve(time_type="LAST_7_DAYS") print("Getting FW events") fw_events = dsm.fw_event_retrieve(time_type="LAST_7_DAYS") print("Getting DPI events") dpi_events = dsm.dpi_event_retrieve(time_type="LAST_7_DAYS") print("Getting IM events") im_events = dsm.im_event_retrieve(time_type="LAST_7_DAYS") print("Getting LI events") li_events = dsm.li_event_retrieve(time_type="LAST_7_DAYS") print("Getting System events") system_events = dsm.system_event_retrieve(time_type="LAST_7_DAYS") event_list = { 'am_events': am_events, 'webrep_events': webrep_events, 'fw_events': fw_events, 'dpi_events': dpi_events, 'im_events': im_events, 'li_events': li_events, 'system_events': system_events } for file_name, events in event_list.items(): process_event_list(file_name, events) except Exception as e: logging.error(e, exc_info=True) finally: dsm.end_session()
from datetime import datetime, timedelta from dsp3.models.manager import Manager dsm = Manager(username="******", password="******", host="127.0.0.1", port="4119") #Example 1: Get antimalware events for all hosts in the last hour # time_type options: "LAST_HOUR", "LAST_24_HOURS", "LAST_7_DAYS", "CUSTOM_RANGE" am_events = dsm.antimalware_event_retrieve(time_type="LAST_HOUR") #Example 2: Get fw events for all hosts during a specific time date_to = datetime.now() date_from = date_to - timedelta(hours=3) fw_events = dsm.fw_event_retrieve(range_from=date_from, range_to=date_to, time_type="CUSTOM_RANGE") #Example 3: Get web reputation events for a specific host in the last 24 hours wr_events = dsm.webrep_event_retrieve(time_type="LAST_24_HOURS", host_id=11, host_type="SPECIFIC_HOST") #Example 4: Retrieve DPI Events by Host Group dpi_events = dsm.dpi_event_retrieve(time_type="LAST_24_HOURS", host_group_id=7, host_type="HOSTS_IN_GROUP") dsm.end_session()
from dsp3.models.manager import Manager dsm = Manager(username='******', password='******',host="127.0.0.1", port="4119") # get detail for a specific host by id host = dsm.host_detail_retrieve(host_id=11) # clear error and warnings for a host dsm.host_clear_warnings_and_errors([11]) # initiate recommendation scans for a list of hosts by id dsm.host_recommendation_scan([11, 12, 14]) # Immediately initiates the fetch of events from hosts identified by IDs. does not retrieve events dsm.host_getevents_now(11) # retrieve all hosts hosts = dsm.host_retrieve_all() # retrieve antimalware events for a specific host am_events = dsm.antimalware_event_retrieve(host_id=11, host_type="SPECIFIC_HOST", time_type="LAST_24_HOURS") # end dsm session dsm.end_session()