Hello,
I get Windows logs with Winlogbeat, and I output them to Kafka.
The issue is that when I use Winlogbeat dashboard in Elasticsearch, there are missing fields, and I would like to use them.
And when I use Elasticsearch output, it works great.
I don't want to use Elastic as output, because I have to use Kafka as Broker.
When I check the log's JSON in Kafka, I see that a lot of fields are missing when I do Kafka output, and with the Elastic Output, the module add those missing fields.
Is it a way to add those fields with kafka output ?
Thanks a lot,