Detect failed Windows updates with Graylog
Let Graylog automatically notify you about failed Windows updates.
Send encrypted logs to Graylog (Bonus: Docker container)
Docker allows logs to be sent unencrypted to a remote log system. Encryption plays a minor role on the intranet, but what if you want to send logs via the web?
Set up a simple SSH bruteforce check in Graylog
There is no security without proper log monitoring, but nobody has time to check all logs all the time. Graylog automates that.
Send encrypted logs to Graylog (Part 2: Windows machines)
In the first part we learned how to create a so-called Shadow CA and send logs with Linux machines to Graylog. We now want to make this possible for Windows PCs as well.
Send encrypted logs to Graylog (Part 1: Linux machines)
Graylog is a log aggregation tool that makes it easy to read and analyze logs due to its Elasticsearch or Opensearch implementation. Unfortunately it is not possible to exchange Graylog with old known tools like rsyslog. Rsyslog uses UDP as protocol, which is basically unencrypted (exception QUIC).
Show Graylog alerts in icinga2
Graylog is a log monitoring tool. Icinga is a tool for machine monitoring. While both tools overlap in many ways, they cannot replace each other.