The Graylog Blog


Back to Basics: Enhance Windows Security with Sysmon and Graylog

Previously we discussed how you can use Graylog Collector Sidecar to configure Filebeat and work with Logfiles. Now we’ll show you how to use the winlogbeat to get the Windows Event Log over to your Graylog Installation. This will be useful if you are running Windows Servers in your environment or have a fleet of workstations that you are responsible for and want to have the additional information added to your already present central logfile system.

Read more >

Protecting Graylog from Data Ransom Attacks

As you may have read, there are currently ongoing data ransom attacks on misconfigured databases like MongoDB and Elasticsearch. The attacks are not exploiting a security issue in these tools, but hackers simply search for instances that are not password protected and are accessible from the internet.

Read more >

Announcing Graylog v2.2.0-beta.6

Today we are releasing Graylog v2.2.0-beta.6. This release includes many bug-fixes and improvements thanks to the feedback from our users! As always, we could continue to use your help by providing feedback for this beta. Please report bugs and any other issues in our GitHub graylog-server repo.

Read more >

Announcing Graylog v2.2.0-beta.5

Today we are releasing Graylog v2.2.0-beta.5. This release includes many bug-fixes and improvements thanks to the feedback from our users! As always, we could continue to use your help by providing feedback for this beta. Please report bugs and any other issues in our GitHub graylog-server repo.

Read more >

Announcing Graylog v2.2.0-beta.4

Today we are releasing Graylog v2.2.0-beta.4. This release includes improvements to the alerting feature as well as a new pipeline processor function. You can now clone a message and remove sensitive fields that you do not want certain users to see. As always, we could continue to use your help by providing feedback for this beta. Please report bugs and any other issues in our GitHub graylog-server repo.

Read more >