logagent-input-windows-events

1.0.9 • Public • Published

logagent-inpt-windows-events

Plugin for Logagent to collect windows events

  1. Install logagent 2.x
npm i -g @sematext/logagent
  1. Install this plugin
npm i -g logagent-input-windows-events  
  1. configure logagent
input:
  windowsEvent:
    module: logagent-input-windows-events 
    intervall: 10
    providers: 
      - Microsoft-Windows-Security-SPP
      - Microsoft-Windows-Security-Auditing
      - Microsoft-Windows-DNS-Client
      - Service Control Manager
      - Microsoft-Windows-Kernel-General
      - MsiInstaller
      - Microsoft-Windows-RestartManager
      - Microsoft-Windows-CAPI2

output:
  elasticsearch:
    url: http://localhost:9200
    index: logs
  1. Start logagent
logagent-windows --config myconfig.yml
  1. Result in Kibana

Readme

Keywords

Package Sidebar

Install

npm i logagent-input-windows-events

Weekly Downloads

2

Version

1.0.9

License

Apache-2.0

Last publish

Collaborators

  • megastef
  • sematext