Skip to main content

UDM parsing outside of Chronicle

  • June 8, 2023
  • 3 replies
  • 7 views
A
Forum|alt.badge.img+1

Hey Team,

I'm looking for a way to parse raw logs outside of Chronicle to UDM, does something like that exist? or will we need to make something in-house

3 replies

G
Staff
Forum|alt.badge.img+1
  • galpolak12
  • Staff
  • June 13, 2023

Hi @Abdul_Noorudeen , you can take a look here https://cloud.google.com/chronicle/docs/reference/ingestion-api#udmevents. It enables a customer to create a direct UDM object as JSON.

Here you can check some python API examples - https://github.com/chronicle/api-samples-python/blob/master/ingestion/create_udm_events.py

A
Forum|alt.badge.img+2
  • alikapucuBronze 3
  • Bronze 3
  • September 27, 2023

Hello @AbdulNC  You can leverage https://apps.chronicle.security/partner-tools/

 

sgulbetekin
Y
Forum|alt.badge.img+1

Hello @AbdulNC  You can leverage https://apps.chronicle.security/partner-tools/

 


How does this work?

Terms & ConditionsCookie settingsAccessibility statement
Privacy Policy Terms of Service Gen AI Policy Community Guidelines Cookie Settings

© 2025 Google. All rights reserved.