Additional Resources:
This is a guide for sending logs from Windows to Graylog using NXLog and the Graylog GELF format. The tutorial uses sysmon-modular which also adds the MITRE ATT&CK to the log files based on certain commands being run.
Forum post with links & downloads used in the video:
How To Install Graylog Tutorial
Connecting With Us
- Hire Us For A Project: Hire Us – Lawrence Systems
- Tom Twitter
https://twitter.com/TomLawrenceTech - Our Web Site https://www.lawrencesystems.com/
- Our Forums https://staging-forum.lawrencesystems.com/
- Instagram https://www.instagram.com/lawrencesystems/
- Facebook https://www.facebook.com/Lawrencesystems/
- GitHub lawrencesystems (Lawrence Systems) · GitHub
- Discord Lawrence Systems
Lawrence Systems Shirts and Swag
AFFILIATES & REFERRAL LINKS
Amazon Affiliate Store
Lawrence Systems's Amazon Page
All Of Our Affiliates that help us out and can get you discounts!
https://www.lawrencesystems.com/partners-and-affiliates/
Gear we use on Kit
Kit
Use OfferCode LTSERVICES to get 10% off your order at
Tech Supply Direct - Premium Refurbished Servers & Workstations at Unbeatable Prices
Digital Ocean Offer Code
DigitalOcean: AI-Powered Unified Inference Cloud Infrastructure
HostiFi UniFi Cloud Hosting Service
HostiFi - Fast and Reliable UniFi in the Cloud
Protect you privacy with a VPN from Private Internet Access
https://www.privateinternetaccess.com/pages/buy-vpn/LRNSYS
Patreon
https://www.patreon.com/lawrencesystems
Chapters
00:00 Sending Windows Event Logs to Graylog With NXLOG
02:16 Sysmon and Sysmon-Modular
03:27 Download NXLOG
04:16 Gralog GELF input Setup
04:53 Installing Sysmon and NXLOG
07:00 Showing MITRE ATT&CK Log Data
#graylog #logging #siem