Merge PR #5197 from @inthecyber - Add new Fortinet Fortigate rules

new: FortiGate - New Administrator Account Created new: FortiGate - Firewall Address Object Added new: FortiGate - New Firewall Policy Added new: FortiGate - New Local User Created new: FortiGate - New VPN SSL Web Portal Added new: FortiGate - User Group Modified new: FortiGate - VPN SSL Settings Modified --------- Co-authored-by: frack113 <62423083+frack113@users.noreply.github.com> Co-authored-by: Tommaso Tosi <tommaso.tosi@inthecyber.com> Co-authored-by: Nasreddine Bencherchali <8741929+nasbench@users.noreply.github.com>
2025-11-02 00:06:27 +01:00
parent a77d3bae4b
commit 4dfbd6b713
9 changed files with 196 additions and 0 deletions
@@ -181,6 +181,14 @@
                "syslog":[]
            }
        },
+        "fortigate":{
+            "common": [],
+            "empty": [],
+            "category":{},
+            "service":{
+                "event":["devname","devid","logid","type","subtype","level","vd","logdesc","user","ui","action","cfgtid","cfgpath","cfgobj","cfgattr","msg"]
+            }
+        },
        "fortios":{
            "common": [],
            "empty": [],
@@ -611,6 +611,8 @@ class TestRules(unittest.TestCase):
                                    pattern_prefix = "onelogin_"
                                elif value == "github":
                                    pattern_prefix = "github_"
+                                elif value == "fortinet":
+                                    pattern_prefix = "fortinet_"
                            elif key == "category":
                                if value == "process_creation":
                                    pattern_prefix = "proc_creation_"