Usage: EventLogParser.exe -file <pathToEvtx> | -computerFqdn <> -logName <logName> [-events EventId,EventId,EventId] [-startdate yyyy-MM-dd] [-enddate yyyy-MM-dd] [-format CSV | XML]

Useful for parsing event logs and saving the output to a CSV or XML file.

Each event is saved to a different file, and the column names are the element names from the event XML payload.

Last edited Oct 23, 2016 at 1:06 PM by GregAskew, version 2