Event Monitoring

Administrators, developers, and technical support personnel use event monitoring for gathering information about the state of the hardware, the software, and the system, as well as to monitor security events. To provide these users with useful information, you need to give an event the right level or severity, raise it to the appropriate log, provide it with the correct attributes, and give it a useful and actionable message.

Understanding the Windows Event Architecture

Prior to Windows Vista, the Windows Event Log API and ETW were separate components. The Windows Event Log API published events in event logs, such as the System and Application event logs, while ETW could be used to start event tracing sessions for detailed troubleshooting ...

Get Windows® 7 Resource Kit now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Windows® 7 Resource Kit by Tony Northrup Mitch Tulloch and Jerry Honeycutt

Event Monitoring

Understanding the Windows Event Architecture

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly