Skip to content
/ Syslog-Generator Public

This PowerShell script generates simulated syslog events and sends them to a specified syslog server.

License

MIT license
0 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

igigis/Syslog-Generator

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

3 Commits
LICENSE
LICENSE
 
 
README.md
README.md
 
 
eventsgen.ps1
eventsgen.ps1
 
 

Repository files navigation

Syslog Event Generator

This PowerShell script generates simulated syslog events and sends them to a specified syslog server. It's designed to help test and validate syslog server configurations, SIEM (Security Information and Event Management) systems, or any other log analysis tools that consume syslog data.

Features

  • Generates a variety of syslog messages simulating different system events
  • Configurable syslog server address and port
  • Randomized message selection for realistic log generation
  • Configurable delay between messages to simulate various traffic patterns

Prerequisites

  • PowerShell 5.1 or later
  • Network access to the target syslog server

Installation

  1. Clone this repository or download the eventsgen.ps1 script to your local machine.
  2. Ensure that PowerShell execution policy allows running scripts. You may need to run the following command as an administrator: 
    Set-ExecutionPolicy RemoteSigned

Configuration

Before running the script, you need to configure the syslog server details:

  1. Open the eventsgen.ps1 file in a text editor.
  2. Locate the Send-SyslogMessage function.
  3. Update the $SYSLOG_SERVER and $SYSLOG_PORT variables with your syslog server's IP address and port: 
    $SYSLOG_SERVER = '192.168.0.117'  # Replace with your syslog server IP
$SYSLOG_PORT = 514                # Replace with your syslog server port if different

Usage

To run the script, open a PowerShell window and navigate to the directory containing the script. Then execute:

.\eventsgen.ps1

The script will start generating and sending syslog messages to the configured server. You will see debug output for each message sent.

To stop the script, press Ctrl+C.

Customizing Log Messages

The script comes with a predefined set of log messages. To customize these:

  1. Open the eventsgen.ps1 file in a text editor.
  2. Locate the $special_logs array in the Generate-TestLogs function.
  3. Modify, add, or remove entries as needed. Each entry is a hashtable with Program and Message keys.

Example of adding a new log message:

@{Program="custom_app"; Message="Application started successfully"},

Troubleshooting

If you encounter issues:

  1. Ensure your firewall allows outbound connections to the syslog server.
  2. Verify that the syslog server is running and configured to accept messages.
  3. Check the script's debug output for any error messages.

Contributing

Contributions to improve the script are welcome. Please feel free to submit a Pull Request.

License

This project is open source and available under the MIT License.

Disclaimer

This script is for testing and educational purposes only. Ensure you have permission to send data to the target syslog server before using this script.

About

This PowerShell script generates simulated syslog events and sends them to a specified syslog server.

Resources

Readme

License

MIT license
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages