Using the panxapi (from @ksteves) I'm able to enumerate all the threats (scan, vulnerability, phone-home), but I'm not able to find an xpath I can use to enumerate information about the antivirus signatures. By way of example, I can see that in my log output each virus hit appears to have a name and and entry number:
I'd like to be able to scrape ALL the name/number combinations from the PA regularly so I can create entries in my SIEM (and thus see these messages in the console). Does anyone know if this is possible, and if so would you share the xpath you used?
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!