Support for SIEM

Art_Norton1 · February 28, 2022, 1:18pm

I’d like to send my Glasswire logs to my Sumologic. I thought it would be pretty straightforward. I created a collector to grab the local sqlite3 db file from Glasswire but it’s not working. Could be that sqlite3 is not supported maybe. I could take the sqlite3 file and convert it to a regular readable csv file I suppose. Has anyone done anything like this?

Ken_GlassWire · February 28, 2022, 1:32pm

Thanks for your feedback.

Please note that GlassWire does have the ability to send alerts to the Windows Event Log if it’s helpful?

Art_Norton1 · February 28, 2022, 2:39pm

Thanks Ken. Let me see if I can get all the data I need from that.