How To Collect Windows Event Logs to Splunk “AGENTLESS-LY” | Thr3at Hunt3r’s Blog
Have you ever wonder to forward windows event logs to a Splunk instance without need of mass deploying universal forwarder on every single host? This might be a solution for you! What we’re gonna do is centralize all the logs first with Windows Event Collector, then forward them with just a universal forwarder which will also be installed on the same server. So, let’s get started.
thr3athunt3r
commented
3 years ago
How To Collect Windows Event Logs to Splunk “AGENTLESS-LY” | Thr3at Hunt3r’s Blog
Have you ever wonder to forward windows event logs to a Splunk instance without need of mass deploying universal forwarder on every single host? This might be a solution for you! What we’re gonna do is centralize all the logs first with Windows Event Collector, then forward them with just a universal forwarder which will also be installed on the same server. So, let’s get started.
http://localhost:4000/splunk/2021/05/28/splunk-1.html