14 Feb 2016

evtsys - Eventlog to Syslog Service for Windows

Ever wondered how you might be able to integrate that one pesky windows server, that you seem to be unable to get rid off, into your existing syslog infrastructure? evtsys is just the tool for the job. Simply download and copy it into your windows system path, for example C:/Windows/system32 .
Then run in your terminal:
evtsys.exe -i <address syslogserver>
This will install a service that forwards all futrure windows log entries to your syslog server.
evtsys, altough not having been updated for quite some time, is doing a great job and even runs on my Windows Server 2016 VM, happlily forwarding everything to my ELK stack.

Sysmikes Blog

The everyday madness between the geek and the otaku

evtsys - Eventlog to Syslog Service for Windows

Comments