Skip to content

CyberArk Privileged Access Security

Overview

This article explains how to ingest to Hunters your CyberArk Privileged Access Security Logs.

For more information about the logs collection enabling and desired output format, see here here and here.


Ingestion to Hunters

For Hunters to integrate with your CyberArk Logs, the logs should be collect to a Storage Service (e.g. to an S3 bucket or Azure Blob Storage) shared with Hunters.

Supported Format

The format supported by Hunters for the ingestion of CyberArk logs can be found here. In particular, please verify that events do have a timestamp in an ISO format.