Jan 26, 2021
2 min read
Proofpoint SIEM API Call
This Python script will pull all information from the SIEM module in Prooofpoint for the last 10 minutes. Paired with the mailer.py script from the previous post will email you if there was anything found, if not, it will silently exit.
In order to generate your API credentials, you must go to your Proofpoint Tenant > Settings > Connected Applications:
https://threatinsight.proofpoint.com/<tenant id>/settings/connected-applications
#!/usr/bin/env python3
