0
responses
responses
lolpute
XML Windows Logs + Rename + Resolver
Hi,
I can collect Security Events Windows in XML format and send them to my SIEM like i wanted
the result is here for an event 4624
1
response
response
Wrzek
NXLog-ce-2.11.2190 stops sending logs after network disconnect and reconnect
Hello,
My NXLog-ce-2.11.2190 stops sending logs after network disconnect and reconnect.
2
responses
responses
steven.su
Possible to use nxlog to regularly check service status?
Hi,
We have the use case to get the specific service's status hourly and it could be done via some PowerShell commands. However, we don't want maintain the script in users' hosts and want to integrate the checking into nxlog's configuration. Does nxlog agent has the capability to run such command hourly? Or will there be any alternative method?
Many thanks in advance !
Best regards,
Steven
1
response
response
jwilliams1010
Using NXLog to Netwitness
Hi,
The decoders used in Netwitness. The job of a decoder is to select a parser to parse log files.
The Netwitness LogDeconder shows Service Type as unknown but I was expecting to see winevent_snare.
My NXLog config uses the Exec $Message =~ s/(\t|\R)/ /g; to_syslog_snare(); to send windows log data to the NETWITNESS collector/decoder.
1
response
response