tag:blogger.com,1999:blog-7303400454979750101.post6294187658997866654..comments2024-03-28T06:49:56.390-07:00Comments on Learning by practicing: Security On The Cheap - Beginning Elastic - Installing and Providing Basic Security to Winlogbeat - Elastic Stack 7.9 on Ubuntu 20.04Nik Alleyne, MSc | CISSP | GC|IA|IH|REM|PENhttp://www.blogger.com/profile/10282323977269843041noreply@blogger.comBlogger2125tag:blogger.com,1999:blog-7303400454979750101.post-91459853981412953452022-04-16T12:37:50.073-07:002022-04-16T12:37:50.073-07:00Hello Sema,
Sorry about the late reply. These days...Hello Sema,<br />Sorry about the late reply. These days I use the Elastic Agent with the Windows integration. I'm not sure about collecting Windows logs with Filebeat. I do not see Windows as one of the options when I run "securitynik@securitynik:~$ sudo filebeat modules list | grep windows".<br /><br />Hope this helpsNik Alleyne, MSc | CISSP | GC|IA|IH|REM|PENhttps://www.blogger.com/profile/10282323977269843041noreply@blogger.comtag:blogger.com,1999:blog-7303400454979750101.post-89206974003983545362022-03-11T06:31:36.024-08:002022-03-11T06:31:36.024-08:00Great blog! Thank you for putting your effort on i...Great blog! Thank you for putting your effort on it..<br />I have a question about winlogbeat..I can also collect windows event logs with filebeat, right? so what makes winlogbeat preferrable compared to filebeat? Can you please clarify it? Thank you..semahttps://www.blogger.com/profile/05610305596786047896noreply@blogger.com