Monitoring Windows DNS queries

In this Reddit thread the discussion is about easy and reliable ways of monitoring Windows DNS queires

2020.08.05. 15:35
Top 10 - Homelab Tools and Software

In this blog post NXlog gets recommended as the log collection software when setting up a Homelab environment

2020.07.27. 10:16
Best free event log forwarder for Win10?

NXlog is recommended for the job on a Reddit thread.

2020.07.25. 18:23
NXlog helps collecting Windows Applocker logs

Florian Roth writes concerning a Github issue, "Applocker is a very useful tool, especially on servers where unprivileged users have access. For example terminal servers. You need configure applocker and log collect to receive these events", and uses NXlog to tackle it.

2020.07.17. 14:13
NXLog in "Top SIEM Companies 2020" List

NXLog in Enterprise Security Magazine Medium post "Top SIEM Companies 2020".

"NXLog is a generic log collector and centralization tool with an open source log management system to manage the quality of data for SIEM. It is used by thousands of customers worldwide from small startup companies to large security enterprises and has over 70,000 downloads to date. NXLog makes Windows Event logs easy to read and interpret, while being less time-consuming and error-free. The SIEM solution provider is able to parse the event logs into readable JSON formatted logs. With a strong background in UNIX systems, NXLog remains platform neutral, benefitting the enterprise clients significantly."

Download our SIEM book here.

2020.03.20. 22:17
No More Secrets: Logging Made Easy Through Graylog Part 3

This a continuation of a longer series that VDA Labs is writing on Graylog also features NXLog Community Edition to ship DC logs back to Graylog.

2020.03.04. 12:47
Discussion on open source SIEM

Interesting discussion in a thread about open source SIEM at the Educause Security Discussion mailing list. Don't believe that 'nothing integrates' with your SIEM. Log collection agents such as ours can be integrated with your SIEM solution regardless if it is open source or not.

2020.02.13. 21:48
SIEM optimization with NXLog

Logging infrastructures mainly focus on SIEM analytics and correlations while log collection, log enrichment and log shipping end up taking a back seat. This uneven focus may result in unstructured or decentralized logging which can hinder information security, business continuity and regulatory compliance efforts. We offer a solution to the most pressing challenges organizations face when it comes to central log collection and SIEM optimization. Download our eBook today.

2020.02.10. 10:14
NXLog in 'Securing a Windows Network' thread

The Securing a Windows network thread, has some great advice for Windows sysadmins. Including this note by a user: "Setup graylog or some other log consolidation tool and use nxlog on everything to start a logging repository." We have extensive documentation and a number of features for securely setting up log collection on your Windows systems, applications and tools as well as integrations with numerous third party suites including Graylog and Elasticsearch/Kibana.

2020.01.02. 03:58
NXLog and Graylog

From a user on sending log files to Graylog: "I do like a good bit of NXLog, the community edition covers most of the features you need and they have some brilliant guides on how to get DNS and DHCP logs out of Windows (along with all other kinds of logs). Worth looking at the sysmon agent for Windows as well to get some really high quality logs out." See our Graylog integration guide here.

2019.12.06. 13:04
NXLog End of 2019 Newsletter

For all the highlights and updates for NXLog in 2019, read our newsletter.

2019.12.05. 23:07
NXLog and LogDNA

"#NXLog is the workhorse of @Windows #logging plugins" - read this integration guide by LogDNA, a platform for log analysis and insights.

2019.10.29. 11:53
NXLog in Swiss Cyber Storm presentation for Windows log collection that will leverage IOCs

The presentation by Michel de Crevoisier of Radar Cyber Security, "Facing the challenge(s) of Windows logs collection to leverage valuable IOCs", presented at Swiss Cyber Storm this week suggests NXLog as a solution to collect DNS transaction logs, to read and forward ETW logs, and for WEF/WEC.

2019.10.16. 18:42
NXLog in Datadog Post on Multiline Logging

Datadog, mentioned in our Integrations page, has published a post on handling multi-line logging which includes a summary of what the NXLog multi-line extension module can do in similar situations.

2019.10.07. 21:07