How To Install And Integrate Splunk Universal Forwarder on Windows

How To Install And Integrate Splunk Universal Forwarder on Windows

Splunk is a SIEM solution that allows us to collect, analyze, and correlate logs in a centralized server in real-time. This video will cover installing Splunk on Windows and configuring different log sources into Splunk.

The steps are:
- Install and Integrate the Universal Forwarder
- Integrating Windows Event Logs

First, we will configure the receiver on Splunk so the forwarder knows where to send the data.

It will show multiple options to configure both forwarding and receiving. As we want to receive data from the Windows Endpoint, we will click on Configure receiving and then proceed by configuring a new receiving port.
By default, the Splunk instance receives data from the forwarder on port 9997.

Installing Splunk Forwarder is very straightforward. First, we will download the latest forwarder from the official website.
We must specify the server’s IP address and port number to ensure that our Splunk instance gets the logs from this host. By default, Splunk listens on port 9997 for any incoming traffic.

Then we have to configure Splunk to receive Event Logs from this host and configure the forwarder to collect Event Logs from the host and send them to the Splunk Indexer.

















🌸 Support channel & make donation :
https://www.paypal.me/aminenina/10

🌸 Subscribe for more videos :
Youtube: https://www.youtube.com/user/aminosninatos

🌸 Follow me On Social Media
Facebook : https://www.facebook.com/aminosninatos/

***********************************************************************
🌸 How To Install And Integrate Splunk Universal Forwarder In Linux
https://youtu.be/7sQsNqYKA_U

🌸 Cisco ASA Visualization in Splunk
https://youtu.be/llMxnlEVb2o

🌸 Cisco ASA Splunk Basic Searching & Reporting
https://youtu.be/TjX_CzwWyyI

🌸 How To Configure Splunk As Syslog Server for Cisco ASA
https://youtu.be/qMsF6RT8-AI

🌸 Cisco ISE Configuring TACACS+ Authentication for CISCO ASA
https://youtu.be/oAfuIEw0-zQ

🌸 How To Configure Cisco ASA for Sending Syslog Messages
https://youtu.be/7uOzFS2yVjI

🌸 Cisco ASA Basic Troubleshooting Commands
https://youtu.be/VbwcT_CBUW4

🌸 Cisco ASA TCP Connection Flags Explained
https://youtu.be/tVTvj9yTLE4

🌸 Cisco ASA Firewall Packet Tracer for Network Troubleshooting
https://youtu.be/8mslCS0YtpM

🌸 How to execute Linux Commands on Cisco IOS
https://youtu.be/UUOGlQV8tkc

🌸 How to configure AAA authentication on Cisco IOS
https://youtu.be/G53pryslQU4

🌸 How to protect Cisco devices against DoS attacks
https://youtu.be/WdfGtKybbBs

🌸 How To protect Cisco Devices against CDP Flood Attack
https://youtu.be/Lo5pc9YIx8I

🌸 How to prevent SNMP Attack on Cisco IOS devices
https://youtu.be/eUKg61LHaYE

🌸 How to protect Cisco Devices against HSRP Attack
https://youtu.be/chYA34pZKHg

🌸 How to protect Cisco Devices against DHCP Denial of service
https://youtu.be/kpaV4HeENVs

🌸 How to protect Cisco Devices against ARP poisoning attack
https://youtu.be/RumltKoDOdc

🌸 How to protect Cisco Devices against Vlan Hopping Attack
https://youtu.be/hPYfHeAmuy0

🌸How to protect Cisco Devices against SSH brute force attack
https://youtu.be/w7VW3dzRBdQ

🌸 What ia the difference between Cisco IOS and IOS XR
https://youtu.be/YmH7mxj2jmQ

🌸 How to exploit Cisco Router using RouterSploit Framework
https://youtu.be/OIqIKImSDnE

🌸 How to pentest Cisco Devices using cisco-torch tool
https://youtu.be/wkK36x6hp_I

🌸 How to exploit Cisco Devices TFTP Server
https://youtu.be/xf0ZCrHTIIU

🌸 How to exploit Cisco Devices SNMP using Kali Linux
https://youtu.be/EJATBkEyHAQ

🌸Cisco configuration Archive & Rollback Feature
https://youtu.be/7QHRfz4Eiko
***********************************************************************
#splunk #microsoft #windows