Automation scripts to deploy Windows Event Forwarding, Sysmon, and custom audit policies in an Active Directory environment.
-
Updated
Nov 21, 2024 - PowerShell
Automation scripts to deploy Windows Event Forwarding, Sysmon, and custom audit policies in an Active Directory environment.
An implementation of a Windows Event Collector server running on GNU/Linux.
An open-source log collector for collecting logs from Windows Event Forwarding
Splunk Add-on to import Windows WEC subscription information
Splunk App that provides some dashboards for Windows WEC telemetry data retrieved using the Windows WEC Add-On
Ansible role for deploying WEFC subscriptions.
Setup-Guide for the central Logserver Graylog (dockerized)
Scripts to automate the setup and configuration of windows event collector.
Winlogbeat installation for Windows Event Collectors (WEFCs)
Add a description, image, and links to the windows-event-collector topic page so that developers can more easily learn about it.
To associate your repository with the windows-event-collector topic, visit your repo's landing page and select "manage topics."