Getting Started with Winlogbeat
Beats is the platform for lightweight shippers to push data from your servers to the Elastic Stack. Winlogbeat is designed to capture and stream Windows event logs to Elasticsearch or Logstash.In this video, Beats developer Andrew Kroh introduces Winlogbeat and show us how to go from installing the Beat to visualizing your Windows event data in Kibana in the matter of minutes.
Andrew is one of the core developers on the Beats project at Elastic. Before joining Elastic he spent eight years working as a software engineer at The Boeing Company. He is an active participant on the Elastic Discuss forums and StackOverflow.