25c4b4053c | ||
---|---|---|
EventPump | ||
.gitattributes | ||
.gitignore | ||
EventPump.sln | ||
readme.md |
readme.md
EventPump
Because I couldn't think of a better name.
A simple command line application that will monitor Windows Event Logs
and write JSON serialized event entries to stdout. These can be reassembled
by other programs such as PowerShell eg: .\EventPump.exe -log Application -log Security | % { $_ | ConvertFrom-Json | FL }
Usage: EventPump.exe -log Application -id 63,25 the -id option may contain multiple values separated by commas but no whitespace.
-v Verbosely print internal events. --log=VALUE Specify log to collect from, may be used multiple times. --id=VALUE Comma separated list of event IDs to filter on -h, -?, --help Show this help.