How do I create a grok match pattern for a log?

e_dd · August 12, 2017, 1:34am

Hi

It would be a great help if you write it in a pattern that can be distinguished from kibana.
Thank you.

{"EventTime":"2017-08-12 10:33:15","Hostname":"ISCHOOL","Keywords":-9214364837600034816,"EventType":"AUDIT_SUCCESS","SeverityValue":2,"Severity":"INFO","EventID":4793,"SourceName":"Microsoft-Windows-Security-Auditing"}

system · September 9, 2017, 1:34am

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
GROK pattern help for Audit Log Logstash	3	303	October 23, 2023
Write a RegEx to match the event pattern in log file Logstash	2	349	June 20, 2023
Cannot find grok pattern for my logs? Logstash	2	992	July 6, 2017
Learning grok filter Logstash	4	1285	September 28, 2017
GROK: help with pattern Logstash	4	257	June 17, 2021

How do I create a grok match pattern for a log?

Related topics