MSI WinGet

Beats winlogbeat

Elastic · 9.4.2 · x64

Before deploying, verify this file with VirusTotal ↗

Silent Commands

Install

msiexec /i winlogbeat-9.4.2-windows-x86_64.msi /quiet /norestart

InstallPath

msiexec /i winlogbeat-9.4.2-windows-x86_64.msi /quiet /norestart INSTALLDIR="<INSTALLPATH>"

Intune Detection Rule

MSI Rule

Rule type MSI information

Product code {2DE7C165-4793-5EE1-9DF0-372082755E2B}

Product version operator Greater than or equal to

Product version 9.4.2

MSI Properties

Product Code {2DE7C165-4793-5EE1-9DF0-372082755E2B}

File Identity

SHA256 190d8307f3feab0daacbe215766527969687bc0d23db15abf8cc47893aa8b9de VirusTotal ↗

Filename winlogbeat-9.4.2-windows-x86_64.msi

Signature

Status Upload installer to verify signature

Installer Selection

WinGet Package

Package ID Elastic.Winlogbeat

Version 9.4.2

Description Fetches and ships Windows Event logs

License Elastic-2.0 ↗

Homepage https://www.elastic.co/downloads/beats/winlogbeat

Support https://github.com/elastic/beats/issues

Installer URL https://artifacts.elastic.co/downloads/beats/winlogbeat/winlogbeat-9.4.2-windows-x86_64.msi

Upgrade Behavior install(Install over existing)

Release Notes Features and enhancements Filebeat - Match http.ServeMux redirect status code for path cleaning in http_endpoint mux. #50686 Libbeat - Update ebpfevents to v0.9.0. #50609 Metricbeat - Add failure_store metric to the stats metricset in the Beat module. #49452 - Add elasticsearch/security_stats metricset to the Elasticsearch module. #50674 - Migrate azure/app_insights metricset off the deprecated track-1 Azure SDK and go-autorest, and use azcore directly. #50392 Fixes All - Initialize disk queue f…