Windows system log Analysis using Security Analytics feature

MePawad · July 11, 2024, 10:40am

Can anyone help me to understand how I can I use windows logs in Security Analytics features.

Can you help me with the steps.
I have an agent which collects windows event logs and sends it to Opensearch.

Also provide detail on how to generate alerts and how these mapping work internally.
Kindly advise.

MePawad · July 12, 2024, 11:32am

@tallyoh I see one of the forum post and it seems like you have some idea around it, it would be really helpful if you can give some advice around it.

system · September 10, 2024, 11:32am

This topic was automatically closed 60 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Feedback: Experimental Feature - Security Analytics General Feedback	10	809	January 3, 2023
What log sources do you need for Security Analytics Security Analytics	5	705	June 20, 2023
Best practices for the log shipper selection of Windows eventlog OpenSearch	3	733	February 8, 2024
Can't view any alerts or findings ( Security Analytics ) Security Analytics	1	59	October 6, 2024
Using security analytics is hard mostly because of a lack of documentation Security Analytics	41	2191	September 21, 2024

Windows system log Analysis using Security Analytics feature

Related topics