Cybersecurity Detection Lab: Forwarding Windows Event Logs to Splunk Using Universal Forwarder

preview_player
Показать описание
In this video, I walk through how to add Download and Install the Splunk Universal forwarder and forward logs from a Windows Domain Controller to a Splunk Enterprise Instance.

___________________________________________
RESOURCES:

______________
JOIN CYBERWOX ACADEMY ON DISCORD!

CHECK OUT CYBERWOX ACADEMY'S WEBSITE

CHECK OUT CYBERWOX ACADEMY ON YOUTUBE!

I hope you like this video! Please like, comment(ask me anything, I’m more than happy to help!), and subscribe:
_____________
ABOUT ME
Hey there ~ I’m Day, I work as a Security Engineer. I make videos about cybersecurity, college, internships, certifications, and whatever else is on my mind. Thanks so much for watching :)
_____________
COLLABORATIONS & CONTACT
IG & Twittter: @daycyberwox

________________________________________________

________________________________________________
MY DESK COMPONENTS

iPad - 10.9-inch iPad Air Wi-Fi 256GB - Rose Gold
MacBook - 13-inch MacBook Pro - Space Gray, USB-C to USB Adapter

________________________________
DISCLAIMER:

This video description has some affiliate links and I may receive a small commission for purchases made through these links. Thank you for your support!
  1. CYBERWOX
  2. universal forwarder
  3. splunk tutorial
  4. cyber security
  5. splunk forwarder
  6. splunk cloud
Рекомендации по теме
Cybersecurity Detection Lab: 0:18:51

Cybersecurity Detection Lab: Forwarding Windows Event Logs to Splunk Using Universal Forwarder

Windows Pentesting Lab 0:03:52

Windows Pentesting Lab Walkthrough: Port Forwarding

Cybersecurity Detection Lab: 0:13:27

Cybersecurity Detection Lab: Installing Splunk for Security Event Monitoring

Cybersecurity Homelab - 0:07:41

Cybersecurity Homelab - Detecting Cyber Threats (SIEM)

How To Use 0:08:00

How To Use The Windows Event Viewer For Cyber Security Audit

Network Security Tools 0:09:24

Network Security Tools to stop hackers

When you first 0:00:32

When you first time install Kali linux for hacking 😄😄 #hacker #shorts

Kiosk mode Bruteforce 0:00:40

Kiosk mode Bruteforce Evasion with Flipper Zero

How To Setup 0:14:35

How To Setup ELK | Elastic Agents & Sysmon for Cybersecurity

how to get 0:20:08

how to get remote access to your hacking targets // reverse shells with netcat (Windows and Linux!!)

Hacking into Android 0:00:34

Hacking into Android in 32 seconds | HID attack | Metasploit | PIN brute force PoC

Remotely Control Any 0:04:59

Remotely Control Any PC in 4 mins 59 seconds

How to build 0:19:13

How to build a SECURE hacking lab (VirtualBox Networking)

Frontend Developer vs 0:00:11

Frontend Developer vs Backend Developer vs Fullstack Developer

NEVER buy from 0:00:46

NEVER buy from the Dark Web.. #shorts

How to know 0:10:19

How to know if your PC is hacked? Suspicious Network Activity 101

Hack The Box 0:30:49

Hack The Box SOC Analyst Lab - Logjammer (Windows Event Logs)

Can you solve 0:00:57

Can you solve this 150 years old puzzle? #shorts

Cybersecurity Threat Hunting 0:06:51

Cybersecurity Threat Hunting Explained

Free Hacking Classes 0:00:16

Free Hacking Classes | Best Hacking Guruji #hacking #cybersecurity #hacker #ethicalhacking

Wazuh SIEM & 0:24:41

Wazuh SIEM & XDR Agent Installation - Virtual Lab Building Series: Ep9

Best Programming Languages 0:00:16

Best Programming Languages #programming #coding #javascript

Last day at 0:00:30

Last day at Infosys ||End of Corporate Life|| #infosys #hyderabad #Corporate #Resignation #happy

Students in first 0:00:11

Students in first year.. 😂 | #shorts #jennyslectures #jayantikhatrilamba

Комментарии
Автор

I finally completed this project! 🥳🥳 This was an amazing project to get hands-on with and troubleshoot. Can't wait to play around more later. Thanks Day!

gavinpaultech
Автор

Great video! I’ve been looking for someone to go through the process at a steady pace and you have done a excellent job of that. I will definitely be keeping an eye out for newer videos. Keep it up!

vivalaheadshot
Автор

Hi there, I installed the universal forwarder on windows, installed the microsoft TA too, currently I am able to capture Registry logs but in the logs i receive in splunk indexer, the user who did the action is not in the logs. can you help me pls?

mohammadjawadstan
Автор

can we use in collect to forward logs to splunk

rohitraj
Автор

Awesome video! I've been trying to figure out how this worked

samuelborthwick
Автор

Thanks so much for this. Could you share your steps with me

enochagyepong
Автор

After doing lab setup how we can see AD logs like creation of user or adding to group in splunk...

RahulVerma-jpff
Автор

I couldn't connect to the wifi in the Domain Controller. I've done everything you have so far but I have no wifi. Any suggestions?

ildaragishev-yviu
Автор

i didn't find the AD in the splunk forworder

ksamloos
Автор

HELP, I can't see the "local event logs" option in my splunk interface. From 12:45

johncambry
Автор

How are you connected to the wifi in the Domain Controller? I've done everything you have so far but I have no wifi, so I can't install universal forwarder

Joangelis