snelcom
/
windows-monitoring-plugins
2
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
9 Commits
1 Branch
0 Tags
24 KiB
 
Branch: master
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'master'
${ noResults }
Yavuz Aydın a78369b733
Update 'winlogbeat.yml' 		1 month ago
README.md Update 'README.md' 1 month ago
check_emsdata.ps1 Update 'check_emsdata.ps1' 7 months ago
check_reboot.ps1 Add 'check_reboot.ps1' 8 months ago
check_webserver.ps1 check_webserver.ps1 7 months ago
winlogbeat.yml Update 'winlogbeat.yml' 1 month ago

README.md

windows-monitoring-plugins

winlogbeat.yml

This is a sample winlogbeat.yml which will use winlogbeat to send windows event logs to graylog.

Usage: Install winlogbeat from chocolatey, i.e.:

choco install winlogbeat

Replace file C:\ProgramData\chocolatey\lib\winlogbeat\tools\winlogbeat.yml with this one.

Restart winlogbeat service:

$service="name='winlogbeat'"
$svc=gwmi win32_service -filter $service
$svc.StopService()
$svc.StartService()