Windows Event Log Output to CSV | Log Collection Solutions

Post a different question

3
responses

2WheelAddict's picture

2WheelAddict

Hello,

We are using nxlog to write all our event logs to syslog, but have a need for them to be formatted as CSV instead of the tab delimited it appears to be currently. Is anyone doing this currently and mind sharing their config, or know if a way to process this correctly?

Thanks!

windows event log csv,

AskedAugust 22, 2017 - 3:03pm

Answer (1)

b0ti

CSV does not accomodate for all fields. If you only want specific ones that's fine.

Otherwise I'd recommend using JSON or KVP.

AnsweredAugust 23, 2017 - 10:43am

Leave a comment

Comments (2)

2WheelAddict
Leave a comment
Yeah, personally I'd rather stick to the SNARE format we're already using, but a 3rd party is requiring CSV. Do you happen to have a conf file that demonstrates exporting Windows logs to CSV you could share?

August 23, 2017 - 3:28pm

2WheelAddict
Leave a comment
Disregard - the 3rd party decided they would accept tab-delimited, so this exercise is no longer necessary. Thanks anyway for your time!

August 23, 2017 - 8:12pm