Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Support globbing for reading archived .evtx files with Winlogbeat #27870

Closed
pemontto opened this issue Sep 10, 2021 · 2 comments
Closed

Support globbing for reading archived .evtx files with Winlogbeat #27870

pemontto opened this issue Sep 10, 2021 · 2 comments
Labels
Stalled

Comments

@pemontto
Copy link

Describe the enhancement:
#11361 was great, thanks! It would even better if it could be enhanced to support file globbing too.

Describe a specific use case for the enhancement or feature:
We're finding more and more often we need to load multiple archived .evtx files. At the moment doing them one by one using the existing method can be quite slow. It would be great if winlogbeat could support file globbing to parallelise the process, but also potentially monitor a folder for new .evtx files.
@botelastic botelastic bot added the needs_team Indicates that the issue/PR needs a Team:* label label Sep 10, 2021
@elasticmachine
Copy link
Collaborator

Pinging @elastic/security-external-integrations (Team:Security-External Integrations)

@botelastic botelastic bot removed the needs_team Indicates that the issue/PR needs a Team:* label label Sep 13, 2021
@botelastic
Copy link

botelastic bot commented Sep 13, 2022

Hi!
We just realized that we haven't looked into this issue in a while. We're sorry!

We're labeling this issue as Stale to make it hit our filters and make sure we get back to it as soon as possible. In the meantime, it'd be extremely helpful if you could take a look at it as well and confirm its relevance. A simple comment with a nice emoji will be enough :+1.
Thank you for your contribution!

@botelastic botelastic bot added the Stalled label Sep 13, 2022
@botelastic botelastic bot closed this as completed Mar 12, 2023
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
Stalled
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@jsoriano @pemontto @elasticmachine