Jon Zeolla created NIFI-5025:
--------------------------------
Summary: Improve ParseEVTX to maintain state
Key: NIFI-5025
URL: https://issues.apache.org/jira/browse/NIFI-5025
Project: Apache NiFi
Issue Type: Improvement
Components: Extensions
Reporter: Jon Zeolla
Currently, ParseEVTX parses Windows EVTX files and sends them without the
concept of state/duplication. In order to use this on our Windows machines we
would want such a feature to be more in line with native Windows Event
Forwarding capabilities (such as
[this|https://docs.microsoft.com/en-us/windows/security/threat-protection/use-windows-event-forwarding-to-assist-in-intrusion-detection#how-is-client-progress-tracked]).
--
This message was sent by Atlassian JIRA
(v7.6.3#76005)
