Home > Products > EventTracker syslog

EventTracker syslog

EventTracker syslog for Windows is secure, certified software that runs as a service and converts Windows event logs to standard syslog for transport to any standard third-party syslog receiver. All Windows versions including servers (2008 R2, 2003) and workstations (Win 7, Vista, XP) are supported. Windows events can be selectively forwarded in real-time as RFC 3164 syslog messages (either UDP or TCP) or cached to local text file and uploaded at pre-defined intervals via ftp, sftp or scp to one or more network or security monitoring consoles. Application log files such as IIS or flat files can also be transmitted. Encryption using TLS is supported.

EventTracker syslog software is designed to allow organizations to smoothly integrate security, compliance and operational monitoring of Windows infrastructure to existing consoles. Being native to Windows, EventTracker syslog is the most feature-rich solution of its kind and addresses many deficiencies that have existed with other offerings.

EventTracker syslog Message Options: Shows the configurable mapping between Windows event log fields and RFC 3164 syslog fields.EventTracker syslog Sys Manager: Shows the console which allows you to distribute/configure agentsEventTracker syslog Agent Config: Shows agent features which can be configured

Click here to see how it works.

Operational Monitoring

More than Windows log monitoring, EventTracker syslog provides detailed information including application starts and stops, software installs/uninstalls, when the CPU/disk/memory thresholds are crossed, detects runaway processes, when disk space trend changes, and service starts and stops.

End-Point Security

EventTracker syslog provides enhanced end-point monitoring and security, generating an event when USB/DVD/CD removable media is inserted including the username and device serial number; all file transfers to USB devices are recorded; USB devices can be automatically disabled based on serial number.

Virtualization Monitoring

Monitor virtualized environments including VMware ESXi, ESX, vCenter, vSphere 3.5, 4.0 and 4.1; HyperV, Xen and receive events in real-time for authentication, permission changes, and configuration changes.

Framework

Providing a centralized configuration and management console, EventTracker syslog can be installed on hundreds of devices in just minutes.  It has a very small footprint, utilizing less than 0.1% of the CPU and less than 0.01% of the network bandwidth.  Auto discovery of systems enables one-click installation; it scales efficiently to tens of millions of events; with guaranteed and encrypted event delivery via syslog (tcp) is available in addition to standard udp delivery.

EventTracker syslog also provides automatic back-up and clearing of event logs on each device.

Certifications
EventTracker is certified at Common Criteria EAL 2+; Encryption is compliant with FIPS 140-2; Microsoft logo certification (Certified for Windows Server 2008 R2) is in progress.

Download the documentation now and see how EventTracker free syslog software can provide the missing pieces to your existing network and security solutions.

EventTracker syslog output is standard per RFC 3164 and can be received by any standard syslog receiver including:
HP OpenView ArcSight
IBM Tivoli LogLogic
CA Unicenter RSA Envision
BMC Patrol Novell Sentinel
NetIQ AppManager Symantec
Solarwinds Quest inTrust
What’s up Gold Tripwire
IP Monitor Splunk
Open NMS Nitro Security
LanDesk Q1 Labs
Nimsoft LogRhythm
Trustwave
Kaseya
Sensage Manage Engine
Uptime Software Dell-Secureworks