WinEventLogParsing is a module for parsing EventLog records, queried by 'Get-WinEvent' to more detailed and flatten powersell objects.
Welcome to the PowerShell Windows EventLog Parsing module. A module designed to flatten EventLog-objects queried by 'Get-WinEvent'
All functions/cmdlets are built with
- PowerShell regular verbs
- Pipeline availabilities if usefull
In order to get started with the module, simply run this in an elevated console:
Install-Module WinEventLogParsingThis will install the module on your system, ready for use
The functions will also work on a remote system:
Get-WinEvent -FilterHashtable @{"LogName" = "Directory Service"; "ID" = "1644"} | Format-WinEventChanges will be tracked in the changelog.md