PaulDotCom mailing list archives
Windows Syslog Agent
From: infolookup at gmail.com (infolookup at gmail.com)
Date: Sat, 15 Nov 2008 18:51:57 +0000
I though splunk only runs on Linux? Does the app needs to run on windows? If so I heard of KiWI syslogger. Sent from my Verizon Wireless BlackBerry -----Original Message----- From: wishi <wishinet at googlemail.com> Date: Sat, 15 Nov 2008 14:01:40 To: PaulDotCom Security Weekly Mailing List<pauldotcom at mail.pauldotcom.com> Subject: Re: [Pauldotcom] Windows Syslog Agent Did anyone mention splunk jet? http://www.splunk.com/ iamnowonmai schrieb:
There was also a dll floating around a few years back called evt2sys. You might still find it. Oh heck let me Google it now..... https://engineering.purdue.edu/ECN/Resources/Documents/UNIX/evtsys/ 2008/11/14 Nick Baronian <nbaronian at gmail.com>Check out DAD. It is a pretty slick opensource log analysis tool for Windows that competes with MS MOM. http://sourceforge.net/projects/lassie/ It hasn't been updated in about a year but it is still fairly feature rich and definitely worth a look. It will read the event logs via a minimally privileged user and parse them on the backend, so an agent on each machine isn't necessary. It dumps them all into a MySQL db which is accessible/searchable via a PHP web interface. -Nick On Fri, Nov 14, 2008 at 6:16 PM, Jonathan Moore <supermegatron at gmail.com>wrote:On Fri, Nov 14, 2008 at 3:54 PM, Chris Merkel <cmerkel at gmail.com> wrote:Are there any free syslog agents for windows that will parse flat file logs for things like DNS, DHCP, IIS (in addition to event logs) on Windows?Here are a couple of syslog agents that run on Windows. Their exact features might vary a bit from what you're asking for, but you might find them useful. * Snare <http://www.intersectalliance.com/projects/SnareWindows/> * Datagram syslog agent <http://www.syslogserver.com/syslogagent.html> -jon
_______________________________________________ Pauldotcom mailing list Pauldotcom at mail.pauldotcom.com http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom Main Web Site: http://pauldotcom.com
Current thread:
- Windows Syslog Agent Chris Merkel (Nov 14)
- Windows Syslog Agent Tim Krabec (Nov 14)
- Windows Syslog Agent Jonathan Moore (Nov 14)
- Windows Syslog Agent Nick Baronian (Nov 14)
- Windows Syslog Agent iamnowonmai (Nov 14)
- Windows Syslog Agent wishi (Nov 15)
- Windows Syslog Agent infolookup at gmail.com (Nov 15)
- Windows Syslog Agent Jack Daniel (Nov 15)
- Windows Syslog Agent Bugbear (Nov 15)
- Windows Syslog Agent Matt Wilbur (Nov 16)
- Windows Syslog Agent Nick Baronian (Nov 14)