Give Winlogbeat the capability to grab logs that are written to log files. #20433
Labels
Comments
botelastic
bot
added
the
needs_team
|
Pinging @elastic/siem (Team:SIEM) |
botelastic
bot
removed
the
needs_team
|
This is not a feature that's on the Winlogbeat roadmp. But being able to read the Windows event logs is something that Filebeat will be able to accomplish (see #19622) as we consolidate all of the log reading features into it. |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Describe the enhancement:
Give Winlogbeat the ability to read and parse log files on Windows systems, similar to Filebeat.
Describe a specific use case for the enhancement or feature:
Some logs are not written to the Windows Event Logs, such as the [Windows Defender firewall logs](Give Winlogbeat the capability to grab some logs that are written to log files.). It would be nice if a single Beat endpoint could handle all of the Windows logs, including the ones that are not written to the Event Logs.
The text was updated successfully, but these errors were encountered: