5.2 Remote Windows Event Logs Collection

The SyskeyOT Windows Agent supports collecting remote windows machine event logs through RPC and WEF (Windows Event Forwarding).

Remote event log collection through RPC is preferred due to it’s simpler architecture and easier configuration.