Configuring splunk forwarder in windows machine

-

 Configuring forwarder in windows machine to forward the logs to SPLUNK in real time.


The Splunk universal forwarder is a free, dedicated version of Splunk Enterprise that contains only the essential components needed to forward data. TechSelect uses the universal forwarder to gather data from a variety of inputs and forward your machine data to Splunk indexers. The data is then available for searching.


REQUIREMENTS:

-                        WINDOWS OS

        SPLUNK FORWARDER


STEPS:

=> Configuring forwarder in windows machine to forward the logs to SPLUNK in real time.

Pc1 = windows 10 .

Pc2 = virtual windows machine .

 

=> Download Splunk universal forwarder  in pc2 And run this .msi file .


=>Click customize options . and ser path for Splunk forwarder 


=>Click ok .


=>no ssl certificate so click next.


=>Click local system and next.

=>Fill up this page then click next .

=>Enter username and password .

=>Start receiving indexer and click next .

=>Click install .

=>Create a new index in Splunk enterprise .

=>Set up Splunk instance to receive data from forwarder  ( in Splunk enterprise).

=>Go to c:\splunk\etc\apps\SplunkUniversalForwarder\local and edit add “index=pc2” in input file . (pc2)

=>Go to windows defender firewall and add new rule in inbound rules .(pc2)



=>Restart Splunk forwarder service .(pc2)

=>Then see all logs are forward in Splunk enterprise .

=>Forwarder successfully configured in windows operating system.

Comments

Post a Comment

Popular posts from this blog

How to Installing and setup GoPhish on Kali Linux

-
Image
  How to Installing and setup GoPhish on Kali Linux Gophish is an open-source phishing toolkit designed for security professionals to conduct penetration tests and awareness training. Developed with user-friendliness in mind, Gophish allows users to easily create, launch, and manage phishing simulation campaigns. It provides a web-based interface where users can design customizable email templates, landing pages, and email lists. Gophish’s real-time reporting and analytics capabilities enable detailed tracking of campaign metrics such as email open rates, link clicks, and submitted credentials, helping organizations assess their vulnerability to phishing attacks. Its flexibility and ease of integration make it a valuable tool for enhancing cybersecurity awareness and testing organizational defenses against social engineering threats. The tool supports various deployment environments, ensuring adaptability to different IT infrastructures. Gophish's comprehensive features make it
Read more

Search engines for cybersecurity research ( part -1 )

-
Image
  In the ever-evolving landscape of cybersecurity, staying ahead of emerging threats and vulnerabilities is crucial. Information security professionals, researchers, and enthusiasts constantly seek the latest insights, tools, and resources to fortify digital defenses. One invaluable weapon in this ongoing battle is the vast realm of search engines tailored specifically for cybersecurity research.   Cybersecurity research has grown into a multidisciplinary field, encompassing everything from threat intelligence and vulnerability analysis to incident response and ethical hacking. To navigate this intricate terrain effectively, researchers rely on specialized search engines that go beyond the surface-level results of conventional search queries. These dedicated tools are engineered to unearth the hidden gems within the vast sea of digital information, making them indispensable for anyone committed to securing the digital realm.   This blog aims to shed light on the diverse array o
Read more

Malware analysis tools

-
Image
  Best malware analysis tools and their features. Malware has become a huge threat to organizations across the globe. Something as simple as opening an email attachment can end up costing a company millions of dollars if the appropriate controls are not in place. Thankfully, there are a plethora of malware analysis tools to help curb these cyber threats. When responding to a security incident involving malware, a digital forensics or research team will typically gather and analyze a sample to better understand its capabilities and guide their investigation. There are a number of tools that can help security analysts reverse engineer malware samples. The good news is that a few malware analysis tools are completely free and open source.  1.peStudio This is an excellent tool for conducting an initial triage of a malware sample and allows me to quickly pull out any suspicious artifacts. Once a binary has been loaded it will quickly provide the user with hashes of the malware and any
Read more