Home page logo
/

basics logo Security Basics mailing list archives

Re: Tool to quickly export all logs on a Windows box
From: Nikhil Wagholikar <visitnikhil () gmail com>
Date: Thu, 18 Feb 2010 23:10:19 +0530

Hello Stephen Mullins,

To answer your first question, you can open Microsoft Event Viewer,
right click on the Event Log (Application, Security, System ....) and
select 'Save Log File As' and then select file type as 'TXT (Tab
delimited). This is the manual method.

For automation of the same process, you can make use of Microsoft Log Parser.
More Info: http://www.microsoft.com/downloads/details.aspx?FamilyID=890cd06b-abf8-4c25-91b2-f8d975cf8c07&displaylang=en

For your second question, the simple way is to map (with proper and
correct permission) the Log folder of Microsoft Windows of remote
machine to your system or system where you are collecting logs and
write a script using 'copy' command that will copy those log files
from mapped drive to your local drive for further analysis. The
default location of Windows logs are
<systemdrive>:\WINDOWS\system32\config.

The other option would be to use third party, efficient and effective
log capturing, monitoring and analysis software such as GFI Events
Manager.
More Info: http://www.gfi.com/eventsmanager

Hope this helps!

---
Nikhil Wagholikar
Practice Lead | Security Assessments & Digital Forensics
Network Intelligence India Pvt. Ltd. [NII Consulting]
Web: http://www.niiconsulting.com/
Comprehensive Information Security Training
http://iisecurity.in/courses/Training Calendar.html

On 16 February 2010 23:25, Stephen Mullins <steve.mullins.work () gmail com> wrote:

List,

I am looking for a good, preferably free, tool that is able to export
all logs on a Windows box to .txt files quickly.

Or, does anyone know of a way to remotely pull all system logs off a
Windows box using active directory or SMS?

Ultimately I'd like to be able to export all system logs to .txt
format using a list of select computer names.

Thanks list,

Steve Mullins

------------------------------------------------------------------------
Securing Apache Web Server with thawte Digital Certificate
In this guide we examine the importance of Apache-SSL and who needs an SSL certificate.  We look at how SSL works, 
how it benefits your company and how your customers can tell if a site is secure. You will find out how to test, 
purchase, install and use a thawte Digital Certificate on your Apache web server. Throughout, best practices for 
set-up are highlighted to help you ensure efficient ongoing management of your encryption keys and digital 
certificates.

http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442f727d1
------------------------------------------------------------------------


------------------------------------------------------------------------
Securing Apache Web Server with thawte Digital Certificate
In this guide we examine the importance of Apache-SSL and who needs an SSL certificate.  We look at how SSL works, how 
it benefits your company and how your customers can tell if a site is secure. You will find out how to test, purchase, 
install and use a thawte Digital Certificate on your Apache web server. Throughout, best practices for set-up are 
highlighted to help you ensure efficient ongoing management of your encryption keys and digital certificates.

http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442f727d1
------------------------------------------------------------------------


  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]