issues
search
ceramicskate0
/
SWELF
Simple Windows Event Log Forwarder (SWELF). Its easy to use/simply works Log Forwarder and EVTX Parser. Almost in full release here at https://github.com/ceramicskate0/SWELF/releases/latest.
https://ceramicskate0.github.io/SWELF/
GNU Affero General Public License v3.0
24
stars
7
forks
source link
issues
Newest
Newest
Most commented
Recently updated
Oldest
Least commented
Least recently updated
Memory Usage Reduction/Maximum efficiency
#42
ceramicskate0
closed
6 years ago
1
Local wvtx log read function no work
#41
ceramicskate0
closed
6 years ago
1
Redo AMSI to scan all plugin input
#40
ceramicskate0
closed
6 years ago
1
Make Local Log reads track place left off in log vice delete after read
#39
ceramicskate0
opened
6 years ago
0
SWELF loads MS AMSI for PS plugin checks
#38
ceramicskate0
closed
6 years ago
1
Public Release of Hash grab from logs functionality and IP grab from logs feature
#37
ceramicskate0
closed
6 years ago
3
Powershell Plugin Central Config Support
#36
ceramicskate0
closed
6 years ago
2
Rewrite SWELF Eventloging
#35
ceramicskate0
closed
6 years ago
0
Update Documentation
#34
ceramicskate0
closed
6 years ago
2
Add tamper checks
#33
ceramicskate0
closed
6 years ago
1
Add whitelist config/search file
#32
ceramicskate0
closed
6 years ago
1
Introduce powershell plugins...again.
#31
ceramicskate0
closed
6 years ago
2
Redo App error logging from ground up
#30
ceramicskate0
closed
6 years ago
0
Forward logs to other ports than 514
#29
ceramicskate0
closed
6 years ago
1
OPEN QUESTION TO THE COMMUNITY
#28
ceramicskate0
closed
6 years ago
1
Add windows defender as log source
#27
ceramicskate0
closed
6 years ago
2
APP 1st run self intialize config creation-created in old format
#26
ceramicskate0
closed
6 years ago
0
Use search commands in per log source and or eventid basis
#25
ceramicskate0
closed
6 years ago
0
JSON as output option yes or no?????
#24
ceramicskate0
closed
6 years ago
0
Ability to centralize config
#23
ceramicskate0
closed
6 years ago
4
App send off log data when significant events occur
#22
ceramicskate0
closed
6 years ago
2
Encrypt sensitive app config files with app on local machine when running as task
#21
ceramicskate0
closed
5 years ago
2
Add searching command commandline_contains:
#20
ceramicskate0
closed
6 years ago
1
Error logs for eventlog missing produced when log is empty
#19
ceramicskate0
closed
6 years ago
0
Setup as eventlog real time monitor
#18
ceramicskate0
closed
5 years ago
2
Searching Powershell event logs
#17
ceramicskate0
closed
6 years ago
1
bug When SEARCHING {TERM},{LOG NAME},{BLANK}
#16
ceramicskate0
closed
6 years ago
1
Use Sysmon logs to search commandline arg length by char count
#15
ceramicskate0
closed
6 years ago
1
Be able to pass commandline args to app for remote usage.
#14
ceramicskate0
closed
6 years ago
0
SNORT ALERT FOR SYSLOG when sending udp packets containing log data
#13
ceramicskate0
closed
6 years ago
2
Send Logs to more than 1 host
#12
ceramicskate0
closed
6 years ago
4
Windows Event logs being sent and logged in order of only the event log source
#11
ceramicskate0
closed
6 years ago
1
Search Sysmon hash and IP on Virustotal
#10
ceramicskate0
closed
6 years ago
2
Extract IP and File Hash's in app algo, deal with config issues to turn features on and off, what to do with log data, and pull from more than sysmon log type
#9
ceramicskate0
closed
6 years ago
4
Expand API class
#8
ceramicskate0
closed
6 years ago
0
GUI for config of app so its easy to manage settings , get notifications on desktop , and get alerts for findings in GUI
#7
ceramicskate0
closed
6 years ago
2
Plugin to Powershell (Gonna be key word search for script output)
#6
ceramicskate0
closed
6 years ago
2
Multi Thread application
#5
ceramicskate0
closed
6 years ago
3
Make app a service
#4
ceramicskate0
closed
6 years ago
1
Make local log reads search and not just fwd
#3
ceramicskate0
closed
6 years ago
2
SWELF initial run error code 0x1
#2
ceramicskate0
closed
6 years ago
0
Do the first push
#1
ceramicskate0
closed
6 years ago
0
Previous