NXLog is a flexible and resourceful log collection tool with a
modular architecture which makes collecting logs as straightforward as possible.
In other words, your business has control over what to collect and how,
all by editing a simple configuration file. NXLog provides a unique
feature that makes log collection on Windows platforms a breeze.
lets you collect data natively from Windows Event Log. This lightweight
component connects directly to the Windows Event Log API without any additional
middleware, making data collection not only agile but intuitively simple. In
fact, you can not only collect, but also monitor data from a multitude of
channels, including those created by event providers.
Additionally, data can be read using the same XML format available in Event
Viewer. These events can then be processed and forwarded to meet any business
requirements or compliance mandates.
Besides the features listed above, NXLog’s im_msvistalog comes with other flexible
capabilities such as its ability to process the new
EVTX file format
which comes with a number of improvements over its predecessor, EVT. Another
advantage of this powerful module includes the facility of collecting events
remotely with MSRPC.
With the vast number of possibilities provided by
NXLog for Windows Event Logging,
your enterprise will certainly be able to forward events efficiently to any
SIEM solution. Not only that, but have them managed correctly, all by
incorporating a flexible, highly configurable, modular tool that conforms to
your business needs and workflow, not the other way around.