# README
Winlogbeat
You know, for windows event logs
Winlogbeat is an open-source log collector that ships Windows Event Logs to Elasticsearch or Logstash. It installs and runs as a Windows service.
Contributions
We love contributions from our community! Please read the CONTRIBUTING.md file.
# Packages
Package beater provides the implementation of the libbeat Beater interface for
Winlogbeat.
Package checkpoint persists event log state information to disk so that event log monitoring can resume from the last read event in the case of a restart or unexpected interruption.
Package config provides the winlogbeat specific configuration options.
Package eventlog provides the means for reading event logs from Windows.
Package sys provides common data structures and utilities functions that are
used by the subpackages for interfacing with the system level APIs to collect
event log records from Windows.