tmds-exporter

he data is aggregated in count and segmented in 3 groups:

1.1 prometheus labels

deep_security_computers
- labels:
  - metric: platform | os_type | agent_version | agent_version_major
  - type: managed | warning | critical | unmanaged | offline | unknown
  - platform: all | linux | windows
  - status: (os version) | (agent version)
deep_security_modules
- labels:
  - metric: am_status | wr_status | fw_status | ip_status | im_status | li_status
  - type: managed | warning | critical | unmanaged | offline | unknown
  - platform: all | linux | windows
  - status: on | off
deep_security_vulnerabilities
- labels:
  - metric: am_status | wr_status | fw_status | ip_status | im_status | li_status
  - type: managed | warning | critical | unmanaged | offline | unknown
  - platform: linux | windows
  - status: all | discovered | detect | prevent

About vulnerabilities status:

discovered: vulnerabilities that are detected but the IPS is not enabled on the host
detect: vulnerabilities with IPS enabled but configured on detect mode
prevent: vulnerabilities with IPS enabled and configured on prevent mode

install deep security sdk:

pipenv --three
pipenv shell
python3 -m pip install third_party/dsm-py-sdk/
pip install -r requirements.txt

You should configure a config.py (renaming config_sample.py to config.py with your configuration), or using environment variables, to configure:

Variable	Description	Value	Value Type
DS_HOST	DSM Hostname	ip	fqdn
DS_APY_KEY	DSM APY KEY	apy key	string
DS_VERIFY_SSL	SSL Verify	True	False
DS_API_CHECK	Cache API data	time in minutes	integer
SERVER_PORT	Prometheus Collector TCP Port	port number	integer
LOG_LEVEL	Log level	INFO	WARN

Import the dashboard located on: grafana/dash.json

curl localhost:9090

This project is not part of any Trend Micro Deep Security project and it is not supported by Trend Micro.

Use and adapt to your needs and PRs are welcomed.