Easily Deploy ELK into CentOS 7
The Elastic Stack — formerly known as the ELK Stack — is a collection of open-source software produced by Elastic which allows you to search, analyze, and visualize logs generated…
Using NXLog to Collect Windows Event Logs
There are a lot of syslog collectors for Windows, but when it comes to stability and features, NXlog has the best chances to fulfill all the requirements. Windows EventLog allows…
Forwarding Windows Event Logs to Syslog Server (Kiwi Syslog)
Centralizing your logs saves time and increases the reliability of your log data, especially for Windows machines. When Windows log files are stored locally on each server, you have to…
ArcSight SIEM Logger Web, Search Examples, Use Case Reports
ArcSight Logger is one of products from Micro Focus SIEM platform. It streams real-time data and categorizes them into specific logs and easily integrates with Security Operations. As a result,…
ArcSight SIEM Logger Web Gui and Search Tips and Tricks
ArcSight Logger is one of products from Micro Focus SIEM platform. It streams real-time data and categorizes them into specific logs and easily integrates with Security Operations. As a result,…
Install Latest Splunk 7.2.0 on Ubuntu 18.04 LTS at Google Cloud Platform
Installing Splunk 7.2.0 into Ubuntu is super easy. I had a video to introduce how to install Splunk in a windows server in my previous post. This time, I am…
ArcSight SIEM Logger
ArcSight Logger is one of products from Micro Focus SIEM platform. It streams real-time data and categorizes them into specific logs and easily integrates with Security Operations. As a result,…
Configure Netflow on network devices for PRTG Netflow Monitoring
Netflow is a feature first introduced into Cisco routers and switches and then flow concept has been widely accepted by other network product vendors. Basically the network devices which support…
Using PRTG SNMPv3 Monitoring Juniper SRX 240H Alarm andTemperature
One of our SRX240H is having temperature problem. Whenever the temperature reached 50 Celsius degree, system alarm will be on. Alarm email should be sent out when temperature reached threshold…
Archive Juniper STRM (IBM Qradar) Logs to remote server
Our Juniper STRM is running out of space after receiving more and more logs from Check Point management server and Juniper NSM. Since my STRM 500 only has about 400G…
Installation Steps of LOG Storm Free Virtual SIEM Appliance
I was reading the Top 47 Log Management Tools from ProfitBricks’ blog. During quick scanning the key features and cost, I decided to give LOG Storm a try. This post…