Simple Windows Event Log Forwarder (SWELF). Its easy to use/simply works Log Forwarder and EVTX Parser. Almost in full release here at https://github.com/ceramicskate0/SWELF/releases/latest.
WHen app first runs and detects that the user did not provide a config then the app will create its own hard coded config (as a default to run properly). The apps config used the old parse config and not the new '~'. This is now fixed for next release. A work around is to replace ',' with '~' in the config file.
WHen app first runs and detects that the user did not provide a config then the app will create its own hard coded config (as a default to run properly). The apps config used the old parse config and not the new '~'. This is now fixed for next release. A work around is to replace ',' with '~' in the config file.