Hi List, Just a quick announcement that the free Events Shell tool from Zetetic has received an update that makes it dramatically faster for Windows 2003. Here’s the short list:
* Proactive check of the OS version for compatibility with the 2008+ Event Log system * Much more efficient mechanism for server-side filtering on downlevel OSes * Delimited / terse output option * File output as a commandline option, optionally flushing to disk after each event This version puts queries against pre-2008 servers almost on par with their newer cousins and represents a very large boost in performance (~95%) for Server 2003. For those who haven’t checked it out yet, Events Shell is a multithread-optimized .NET CLI tool that scans Windows Event Logs in parallel, based on Event IDs and date ranges you specify. It has some nifty shortcuts to scan all writable domain controllers (which is its default), so even in a large environment, collecting all the security group adds / modifications / deletes is as simple as “ZeShell -q secgroup”. It also reads archived .evt / .evtx files, or entire directories full of archives. More information and the download link are here: <http://zetetic.net/products/events> This tool is free of charge to use, with no nags or technical limits. Feedback is appreciated! We’re also interested in hearing from anyone interested in beta testing Combine, our new product for continuous, agentless collection of Event Logs and UNIX Syslog data to SQL with web management. Just give me a shout off-list if this piques your interest. Thanks, Steve ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to [email protected] with the body: unsubscribe ntsysadmin
