issues
search
ceramicskate0
/
SWELF
Simple Windows Event Log Forwarder (SWELF). Its easy to use/simply works Log Forwarder and EVTX Parser. Almost in full release here at https://github.com/ceramicskate0/SWELF/releases/latest.
https://ceramicskate0.github.io/SWELF/
GNU Affero General Public License v3.0
24
stars
7
forks
source link
issues
Newest
Newest
Most commented
Recently updated
Oldest
Least commented
Least recently updated
SPLUNK .Net SDKs now out
#142
ghost
opened
1 year ago
0
Add new sysmon event ID's from 2018 to today
#141
ceramicskate0
closed
3 years ago
0
.cpl
#140
ghost
closed
3 years ago
0
Update Searchs.txt
#139
ghost
closed
3 years ago
0
Add to searchs.txt for cmdline
#138
ghost
closed
3 years ago
1
Add to search,txt
#137
ghost
closed
3 years ago
1
SWELF may have searching issues in Search.cs (v0.6.1.0)
#136
ceramicskate0
opened
4 years ago
0
Update SWELF_SPLUNK_DASHBOARD.xml
#135
ceramicskate0
closed
4 years ago
1
Not all Errors being recorded
#134
ceramicskate0
opened
4 years ago
0
SWELF 0.6.1.0 Crash under certain conditions for SEND_Errors_To_Central_Location()
#133
ceramicskate0
opened
4 years ago
0
Send Logs in JSON Format
#132
ceramicskate0
opened
4 years ago
0
Add App_Config option to parse out sysmon
#131
ceramicskate0
closed
4 years ago
0
Add macros to find in Searchs.txt to Log Sources
#130
ceramicskate0
closed
3 years ago
0
Send Logs over tcp SSL/TLS
#129
ceramicskate0
opened
4 years ago
3
Complete TODO in app comments and remove comemnts
#128
ceramicskate0
closed
4 years ago
0
After Code refactor UPDATE DOCS
#127
ceramicskate0
closed
4 years ago
0
MultiSearch Feature not logging to event log as multisearh
#126
ceramicskate0
opened
4 years ago
1
Error log default output has typo
#125
ceramicskate0
closed
4 years ago
0
File and Directory to monitor default settings cause crash
#124
ceramicskate0
closed
4 years ago
1
Add forfiles.exe
#123
ceramicskate0
closed
4 years ago
1
Add msbuild IOC to searchs.txt
#122
ceramicskate0
closed
4 years ago
1
Add DelegateExecute reg value for UAC bypasses
#121
ceramicskate0
closed
4 years ago
1
Add MSSQL log event ID's
#120
ceramicskate0
opened
4 years ago
0
add eventid 1042
#119
ceramicskate0
closed
4 years ago
1
Newest SWELF Version cuts off some eventdata in logs
#118
ceramicskate0
closed
4 years ago
0
SWELF will log the full URL to the error log of application when it is unable to access it
#117
ceramicskate0
closed
4 years ago
0
add C:\Windows\System32\wsreset.exe
#116
ceramicskate0
closed
4 years ago
1
add Software\Classes\AppX82a6gwre4fdg3bt635tn5ctqjf8msdd2\Shell\open\command
#115
ceramicskate0
closed
4 years ago
1
Add sysmon integ check feature addition
#114
ceramicskate0
closed
4 years ago
3
Look at redoing multisearch feature to use regex vice loop
#113
ceramicskate0
closed
4 years ago
1
Reg keys still contain SWELF in name vice what ever app was renamed to
#112
ceramicskate0
closed
4 years ago
0
0.5.0.4 sensitve files not always encrypting after 2nd run
#111
ceramicskate0
closed
4 years ago
0
ips.txt and hash.txt file name is backwards
#110
ceramicskate0
closed
4 years ago
0
Lock down install dir for SWELF
#109
ceramicskate0
opened
5 years ago
5
ADD to template
#108
ceramicskate0
closed
4 years ago
1
0.5.0.4
#107
ceramicskate0
closed
5 years ago
0
Add feature for tcp TLS connection
#106
ceramicskate0
closed
4 years ago
0
INCORRECT ERROR everyrun Severity=critical MethodInCode=SEC_Check_Failed() Message=SEC_Check Fail the reg hostname != to the config hostname for log_collector1. Possible SWELF config integrity issue.
#105
ceramicskate0
closed
4 years ago
1
Current version in test has issue with wrong search term in eventlog on system
#104
ceramicskate0
closed
5 years ago
3
Create LICENSE
#103
ceramicskate0
closed
5 years ago
0
Default files created during install appear to have _ in them and some dont.
#102
ceramicskate0
closed
5 years ago
0
When SWELF reads in EventLogs it stores compmressed but also in cleartext
#101
ceramicskate0
opened
5 years ago
0
SWELF 1st run takes 5 runs to setup
#100
ceramicskate0
closed
5 years ago
2
SWELF CPU usage to High in 0.5.0.3
#99
ceramicskate0
closed
4 years ago
1
Explore the Idea of Search_Rule Comments in Log_of_interest output
#98
ceramicskate0
opened
5 years ago
0
0.5.0.3
#97
ceramicskate0
closed
5 years ago
0
Add reg key for wdigest
#96
ceramicskate0
closed
5 years ago
1
Fresh install not working
#95
ceramicskate0
closed
5 years ago
1
SWELF 0.5.0.0 re reading old logs every run.
#94
ceramicskate0
closed
5 years ago
1
Redo the "not_in_log" search logic
#93
ceramicskate0
closed
5 years ago
0
Next