Additional Resources:
This is a guide for sending logs from Windows to Graylog using NXLog and the Graylog GELF format. The tutorial uses sysmon-modular which also adds the MITRE ATT&CK to the log files based on certain commands being run.
Forum post with links & downloads used in the video:
How To Install Graylog Tutorial
Connecting With Us
- Hire Us For A Project: Hire Us – Lawrence Systems
- Tom Twitter
https://twitter.com/TomLawrenceTech - Our Web Site https://www.lawrencesystems.com/
- Our Forums https://staging-forum.lawrencesystems.com/
- Instagram https://www.instagram.com/lawrencesystems/
- Facebook Lawrence Systems | Southgate MI
- GitHub lawrencesystems (Lawrence Systems) · GitHub
- Discord lawrencesystems
Lawrence Systems Shirts and Swag
►👕 https://lawrence.video/swag/
AFFILIATES & REFERRAL LINKS
Amazon Affiliate Store
Lawrence Systems's Amazon Page
All Of Our Affiliates that help us out and can get you discounts!
https://www.lawrencesystems.com/partners-and-affiliates/
Gear we use on Kit
Kit
Use OfferCode LTSERVICES to get 10% off your order at
Tech Supply Direct - Refurbished Tech at Unbeatable Prices
Digital Ocean Offer Code
DigitalOcean | Cloud Hosting for Builders
HostiFi UniFi Cloud Hosting Service
HostiFi - UniFi Cloud Hosting
Protect you privacy with a VPN from Private Internet Access
Buy VPN with Credit Card or PayPal | Private Internet Access
Patreon
lawrencesystems | creating Tech Tutorials & Reviews | Patreon
Chapters
00:00 Sending Windows Event Logs to Graylog With NXLOG
02:16 Sysmon and Sysmon-Modular
03:27 Download NXLOG
04:16 Gralog GELF input Setup
04:53 Installing Sysmon and NXLOG
07:00 Showing MITRE ATT&CK Log Data
#graylog #logging #siem