Hi guys,
I’m just trying to get more viability on windows machines at home. Is there a free syslog agent for windows that can report back to a syslog server?
One of the things I’m hoping to get is a alert if powershell commands have been run on a machine.
PJ
Zabbix can pull event logs if you install the zabbix agent on the client machine and you can alert on the event ID, log severity or name or a combination of those and a few more.
https://www.zabbix.com/documentation/current/manual/config/items/itemtypes/zabbix_agent/win_keys
Thank you. I’ll check it out.
Solarwinds does make a free product you can try out: https://www.solarwinds.com/free-tools/event-log-forwarder-for-windows
I have used it before to forward logs over to a log analyzer.