Does anyone know how to extract the data values from the event_data field in Wondows Event logs. I am capturing the logs with Alloy and sending them to Loki
Related topics
| Topic | Replies | Views | Activity | |
|---|---|---|---|---|
| Writing a query to extract Event ID 4663 | 2 | 18 | February 11, 2025 | |
| Parse data from windows events log and extract lables from "event_data" | 3 | 959 | June 20, 2024 | |
| How to add items into log payload in Alloy? | 2 | 31 | February 12, 2025 | |
| How do I extract data from the event_data section? | 4 | 17 | February 19, 2025 | |
| Transform JSON Windows Event Logs with Alloy | 7 | 794 | August 16, 2024 |