-
Event-Forwarding-Guidance
Discontinued Configuration guidance for implementing collection of security relevant Windows Event Log events by using Windows Event Forwarding. #nsacyber
-
InfluxDB
Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.
Your next step is to implement Event Forwarding using NSA's handy scripts to a centralized logging server or repository.
NOTE:
The number of mentions on this list indicates mentions on common posts plus user suggested alternatives.
Hence, a higher number means a more popular project.
Related posts
-
Which event id's are generated from advanced auditing policies?
-
DC's are drowning in Event 521 security events
-
SysmonConfigPusher: Pushes Sysmon Configs - 2 years old, but wasn't included at the time
-
GitHub - LaresLLC/SysmonConfigPusher: Pushes Sysmon Configs
-
For those that use windows log forwarding, what are you forwarding?