I’m using GrayLog since 4 months and this is a verry useful tool! I use Nessus too (tool for vulnerability scan) and Nesus can generate reports in a .XML file.
This week I tried many NXLog configuration but nothing work. My goal was to export a nessus report (in XML format) into GrayLog with NXLog on Windows (or Linux maybe).
Do you know what is the good configuration to doing this? Do you have an example?
This is my actual (not working) configuration file nxlog.conf :
define ROOT C:\Program Files (x86)\nxlog <Extension gelf> Module xm_gelf </Extension> Moduledir %ROOT%\modules CacheDir %ROOT%\data Pidfile %ROOT%\data\nxlog.pid SpoolDir %ROOT%\data LogFile %ROOT%\data\nxlog.log <Extension syslog> Module xm_syslog </Extension> <Extension xm_xml> Module xm_xml </Extension> <Input in> Module im_file File "C:\Program Files\Graylog\collector-sidecar\generated\myNessusReport.xml" </Input> <Output out> Module om_udp Host XX.XX.XX.XX Port 12201 Exec to_syslog_bsd(); </Output> <Route 1> Path in => out </Route>
What I’m missing in my configuration?
Thank for your help !