FortiSIEM - Windows Defender Logs

Hi Isuru,

One question about this, are you collecting the Windows Defender Log via WUA Agent?

Cheers,
Hugo Pinto-------------------------------------------
Original Message:
Sent: Apr 07, 2020 09:35 PM
From: Isuru Tharanga
Subject: FortiSIEM - Windows Defender Logs

Hi Hugo,

Sorry for the late response. Not the ATP Logs (I saw there is a parser for that). I was looking for a parser related to the Endpoint Logs from Windows Defender.

Cheers,
Isuru
Original Message:
Sent: 04-02-2020 10:14
From: Hugo Pinto
Subject: FortiSIEM - Windows Defender Logs

Hi Isuru,

Just for Windows Defender ATP.

Cheers
Original Message:
Sent: 04-02-2020 04:04
From: Isuru Tharanga
Subject: FortiSIEM - Windows Defender Logs

Hi,

I would like to know whether there is a parser for Windows Defender Operational/WHC Logs

Cheers,
Isuru