all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Are the logs from all .evtx and .etl files included with Get-EventLog and Get-WinEvent?

Add to bookmarks
March 27, 2022, 8:46 p.m. | /u/Jonathan-Todd

cybersecurity www.reddit.com

Before realizing we could just use `Get-EventLog` and `Get-WinEvent`, then pipe that to `ConvertTo-Json`, we (being new to the industry) were planning on exporting all of the `.evtx` and `.etl` files, then using various open source parsers to convert them to JSON, then to DataFrames in Python for some data science and visualization.

I guess that's a still useful approach if we don't have access to a live system, only a forensic image of a file-system. But definitely if `Get-EventLog` …

cybersecurity eventlog evtx files logs

Visit resource

More from www.reddit.com / cybersecurity

Starting out in Cybersecurity 3 hours ago | www.reddit.com
cybersecurity doing electrical engineering +6
Grafana backend sql injection affected all version 5 hours ago | www.reddit.com
backend cybersecurity grafana injection +3
Security under CTO, IT under CFO 10 hours ago | www.reddit.com
cfo corporate cto cybersecurity +12
How does a small company offering basic IT sevices address cyber security these days? 12 hours ago | www.reddit.com
address basic cyber cyber security +5
Why haven’t we seen Financial Loss at Bank Levels? 14 hours ago | www.reddit.com
access addresses bank banks +16
How do you conduct a security assessment of AWS? 14 hours ago | www.reddit.com
amazon amazon web services assessment aws +18
CSPM - Is Sentinel/Defender good enough? 14 hours ago | www.reddit.com
azure cspm cybersecurity defender +8
Should one upload their pentest reports on GitHub ? 15 hours ago | www.reddit.com
cyber cyber security cybersecurity github +17
THM vs HTB vs HTB Academy for a computer science graduate 20 hours ago | www.reddit.com
academy beginner computer computer science +14

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Cyber Threat Analyst

@ Peraton | Morrisville, NC, United States
View on infosec-jobs.com

Kyndryl Offensive Security Professional - Threat-Led Penetration Testing (TLPT) and Red Teaming

@ Kyndryl | Sao Paulo (KBR51645) WeWork Office
View on infosec-jobs.com

Consultant en Cyber Sécurité - Spécialiste PKI H/F

@ Devoteam | Levallois-Perret, France
View on infosec-jobs.com

Cloud Security Architect - Advisor (Remote)

@ Fannie Mae | Reston, VA, United States
View on infosec-jobs.com

OT Cybersecurity Engineer

@ SBM Offshore | Bengaluru, IN, 560071
View on infosec-jobs.com
View more jobs