Skip to main content

Send Torq Audit and Activity Logs to Singularity XDR - Workflow Template

Based on a configured time, workflow audit and activity logs will be sent to SingularityXDR

Updated this week

This workflow template is designed to streamline the process of sending Torq audit and activity logs to Singularity XDR. By scheduling regular log retrievals, it ensures that logs are consistently pulled, reformatted from JSON to plain text, and sent in batch transactions. This automation enhances log management efficiency, providing businesses with timely insights into system activities and audits, crucial for maintaining security and compliance.

Take Me to the Template

Use Cases

Example , Function

Workflow Breakdown

  1. Runs on an schedule and pull the audit and activity logs.

  2. Reformat logs from JSON to plain text, one entry per line separated by a newline.

  3. Set a checkpoint using global variables for each run.

  4. Send logs to Singularity XDR in a batch transaction.

Vendors

Utils, SentinelOne, Torq

Workflow Output

Log files will be created on SingularityXDR named after the type of log and the timestamp.

Tips

  • Upload Logs action require a "Log Write Access" API key.

Related Articles
Collect Torq Audit or Activity Logs - Workflow Template
Send Torq Audit or Activity Logs to Azure Blob Storage - Workflow Template
Send Torq Audit and Activity Logs to S3 Bucket on a Schedule - Workflow Template
Send Torq Audit or Activity logs to Sumo Logic on a Schedule - Workflow Template
Gather Torq Audit or Activity Logs - Workflow Template
Did this answer your question?