What is the best way to forward sysmon logs to ELK Stack

My_Miki · March 5, 2020, 7:20am

Hi,
Current practice is to forward all sysmon logs to syslog.

How should i forward these logs from syslog server to ELK stack ?

We dont want to install winlogbeats on every system.

system · April 2, 2020, 7:20am

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Can ELK configure Remote Syslog Forwarding to Third party syslog server? Elasticsearch	6	987	November 17, 2022
Forward azure logs with syslog? Logstash	1	252	August 16, 2021
Solaris 10 Syslog cannot forwarding custom logs to logstatsh Elasticsearch	1	522	September 2, 2019
SyslogServer to ELK Logstash	2	620	May 2, 2017
Forward logs to SIEM Logstash elastic-stack-security	3	1609	February 14, 2019