`sophos.sophoshomelogs`¶

$ target-query <path/to/target> -f sophos.sophoshomelogs

Details¶
Module	`dissect.target.plugins.apps.av.sophos.SophosPlugin`
Output	`records`

Module documentation

Sophos antivirus plugin.

Function documentation

Return log history records from Sophos Home.

Yields SophosLogRecord with the following fields:

ts (datetime): Timestamp.
description (string): Short description of the alert.
path (path): Path to the infected file (if available).

sophos.sophoshomelogs¶