Log Videos

The following videos will show the various logs that were set up for the project.

Zeek/Authorization Logs

https://drive.google.com/file/d/1CGTBh0evgZrv8WMjPaIFB5XfQ1yeQY0d/view?usp=sharing

The authorization dashboard can be found here

Sysmon

https://drive.google.com/file/d/1Nv2keOgunol-mO6Yp6NGbIS_W4vI_W5c/view

Note: I forgot to show the dashboard for Sysmon, but it can be found here in the documentation.

HTTP Access Logs

Unfortunately, we could not get the HTTP Access Logs working. The sidecar token for our centos1-group12 machine did not want to cooperate. If we were able to get this up and running we would have added "filebeat" to this Linux machine to work with the Access Logs, as Syslog does not deal with that.