How to parse "WinEventLog:Windows PowerShell"?


#1

My question is how have others been parsing this Powershell file among other esoteric Windows Event logs?


#2

Hey @Jack, You don’t have to personally write regex or parser for Windows event logs, these are already available in DNIF, you just have to make sure the Add the device and apply the right parser. Feel free to ping back, in case you need any help with device addition :blush:


#3

Thanks @Mark.Perche, saved my day :sunglasses::sweat_smile::sweat_smile::sweat_smile: