Logging system messages and events can provide valuable insights into troubleshooting issues as well as security. In our review...
Tag Archive for: log management
4sysops - The online community for SysAdmins and DevOps
Encrypt event logs and files with PowerShell and group policies

A new feature of Windows 10 and Server 2016 is Protected Event Logging, which encrypts sensitive data in the...
Complete network visibility with SolarWinds Log and Network Performance Pack

SolarWinds combines a powerful log analyzer with high-level network performance views into an incredibly useful pack. Quickly solving complex...
EventSentry 4.0: SIEM with Active Directory monitoring

Back in mid-2018, we looked at EventSentry 3.5. In this article, we're going to cover all the new goodies...
Forward Windows events to a Syslog server with free SolarWinds Event Log Forwarder for Windows

Despite Syslog’s popularity, Windows OS does not natively support sending event log data to a Syslog server. This is...
Custom logs and fields in Azure Log Analytics

Log Analytics, now part of Azure Monitor, is a log collection, search, and reporting service hosted in Microsoft Azure....
Monitoring virtual machines with Log Analytics (OMS) using PowerShell

As Azure services are growing day by day, it is becoming more important to monitor them in a fully...
New features in EventSentry 3.5, a cost-effective SIEM tool

If you need an easy-to-set-up and cost-effective security monitoring solution for your network, EventSentry 3.5 should definitely be on...
Fast event log search in PowerShell with the FilterHashtable parameter

In my last post, I showed you how to display and find specific events with the Get-WinEvent cmdlet. Whereas...
Windows Event Forwarding to a SQL database

Event Forwarding lets you collect all kinds of information from the Windows event log and store it in a...
Parse log files with PowerShell

If you have to find information in unstructured log files, PowerShell offers a variety of cmdlets that can help...
Search the event log with the Get-WinEvent PowerShell cmdlet

Searching in the event log is one of the most common tasks of a system administrator. With the help...
Audit Windows logon and logoff events with PowerShell and SQL Server

In this guide, I'll go through the steps to audit user logon and logoff events using Microsoft SQL Server...
Viewing ESXi log files

In this article, I will list several options for accessing and viewing ESXi log files in environments of different...
FREE: Sysmon – New Sysinternals tool logs system activity in Event Log

Microsoft released the new Sysinternals tools, Sysmon, which allows you to monitor Windows process creations, file creation time changes,...
Splunk – Analyze system logs

Splunk is a general-purpose analytics tool. In this post, you’ll learn how to leverage Splunk for analyzing system logs.
How to clear the Event Log with PowerShell

In the previous article I demonstrated some techniques using Get-WMIObject to backup classic event logs. If you have PowerShell...
How to backup the Event Log with PowerShell

Last time we looked at using PowerShell to query the state of classic Event Log entries, as well as...
How to set Event Log limits with PowerShell

Event logs are terrific management tools, but they themselves require a little attention every now and then. You may...
FREE: EventSentry Light – Real-time event log monitoring

The free event log monitoring tool EventSentry Light allows you to monitor event logs, log files, remote hosts, services...