Elkwin - ELK Stack for Windows


Elkwin is an ELK stack implementation for Windows systems. It is a packaging of Elasticsearch, Logstash, Kibana and Java Server JRE, to provide a standalone solution ready to use for searching, analyzing and visualization of almost any type of structured and unstructured data in real time. 

Elkwin - ELK Stack for Windows

 Elasticsearch is a Lucene-based search server, providing a distributed and multitenant-capable full-text search engine with a RESTful web interface and schema-free JSON documents. Logstash is an open source tool for collecting, parsing, and storing logs for future use. Kibana is a web interface that can be used to search and view the logs that Logstash has indexed. Both of these tools are based on Elasticsearch.



ELK Stack (Elasticsearch/Logstash/Kibana)

Ok6.2.1 Ok5.6.0
Oracle Java server JRE OkJ8 u162 OkJ8 u144
Upgrade-aware installer Ok
Silent installation Ok
Component selection for distributed setup Ok
  Get Copssh! Get Elkwin!



Supported platforms : Vista/2008(R2)/7/2012(R2)/8/10/2016

Elkwin is available as a zip file containing an installer. Simply unzip your downloaded copy and run the package "Elkwin_x.x.x_Installer.exe" :

  1. Accept License agreement.
  2. Specify an installation location.
  3. Installation starts. By clicking 'Details' button, you can get more detailed information about installation.
  4. At the end of the installation, the installer will give you information about the default setup.



You need to start all three Elkwin Services in the following order due to dependencies:

Elkwin_Elasticsearch, Elkwin_Logstash and Elkwin_Kibana.


You need to configure <inst.dir>/logstash/logstash.conf according to your needs. Logstash comes with a default set of plugins and can be extended further by using the plugin manager. Check our Elkwin FAQs for some recipes.


Kibana web interface is available at

 Kibana example 


This one is easy too:

  1. Run the uninstaller
  2. Remove remnants in the installation directory.