Active Directory Auditing (NXLOG) - Graylog 2.x

@reighnman

Download from Github
View on Github
Open Issues
Stargazers

Tested with nxLog/Windows 2008R2 Domain Controllers/Graylog 1.2

This content pack provides several useful dashboards for auditing Active Directory events:

• DNS Object Summary - DNS Creations, Deletions
• Group Object Summary - Group Creations, Modifications, Deletions, Membership Changes
• User Object Summary - Account Creations, Deletions, Modifications, Lockouts, Unlocks
• Computer Object Summary - (in progress)
• Logon Summary - Failed Authentication Attempts, Interactive Logins