winlogbeat

command

v5.2.0+incompatible Latest Latest Go to latest Published: Jan 24, 2017 License: Apache-2.0 Imports: 3 Imported by: 0

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/menderesk/beats

Links

Open Source Insights

README ¶

Winlogbeat

You know, for windows event logs

Winlogbeat is an open-source log collector that ships Windows Event Logs to Elasticsearch or Logstash. It installs as a Windows service on all versions since Windows XP.

Contributions

We love contributions from our community! Please read the CONTRIBUTING.md file.

Documentation ¶

Overview ¶

Package winlogbeat contains the entrypoint to Winlogbeat which is a lightweight data shipper for Windows event logs. It ships events directly to Elasticsearch or Logstash. The data can then be visualized in Kibana.

Downloads: https://www.elastic.co/downloads/beats/winlogbeat

Source Files ¶

View all Source files

main.go

Directories ¶

Path	Synopsis
beater Package beater provides the implementation of the libbeat Beater interface for Winlogbeat.	Package beater provides the implementation of the libbeat Beater interface for Winlogbeat.
checkpoint Package checkpoint persists event log state information to disk so that event log monitoring can resume from the last read event in the case of a restart or unexpected interruption.	Package checkpoint persists event log state information to disk so that event log monitoring can resume from the last read event in the case of a restart or unexpected interruption.
config Package config provides the winlogbeat specific configuration options.	Package config provides the winlogbeat specific configuration options.
eventlog Package eventlog provides the means for reading event logs from Windows.	Package eventlog provides the means for reading event logs from Windows.
sys Package sys provides common data structures and utilties functions that are used by the subpackages for interfacing with the system level APIs to collect event log records from Windows.	Package sys provides common data structures and utilties functions that are used by the subpackages for interfacing with the system level APIs to collect event log records from Windows.
eventlogging Package eventlogging provides access to the Event Logging API that was designed for applications that run on the Windows Server 2003, Windows XP, or Windows 2000 operating system.	Package eventlogging provides access to the Event Logging API that was designed for applications that run on the Windows Server 2003, Windows XP, or Windows 2000 operating system.
wineventlog Package wineventlog provides access to the Windows Event Log API used in all versions of Windows since Vista (i.e.	Package wineventlog provides access to the Windows Event Log API used in all versions of Windows since Vista (i.e.

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL