Logstash EVTX Ingestion

rusty_cole · January 20, 2022, 1:00pm

Hi Guys,
Is there a way to ingest cold EVTX files with logstash?
The reason I am asking, is that winlogbeat is really slow.
I have big files, some of them takes hours to upload into ELK with winlogbeat.

Thanks

system · February 17, 2022, 1:01pm

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Ingest EVTX file with Elastic Agent Elastic Agent	1	234	June 29, 2023
Winlogbeat Manual EVTX Upload - Performance Elasticsearch	1	289	February 16, 2022
Importing .evtx files to ELK using WinLogBeat Beats beats-module , winlogbeat	2	1316	November 17, 2021
How to send evtx files to logstash via FIlebeat? Beats filebeat	3	4192	January 6, 2020
Upload and parse exported .evtx files to Elasticsearch Beats winlogbeat	9	4968	May 10, 2019

Logstash EVTX Ingestion

Related topics