This program is viewer for Windows EventLog
- download archive from release page
- extract file
- execute WEventViewer.exe
- select "File"-"Open", and input search condition, then eventlog will be loaded
- if "PathType" = "LogName" is selected, read event log from current machine
- if "PathType" = "FilePath" is selected, read event log from exported event log file(evtx)
- raw query's format
- double click on log, then open detailed log information
- select log and right-click and select "Copy as XML" in context menu, then EventLog XML will be copied to clipboard
-n/--logname LOGNAME: target LogName or exported windows eventlog file path-t/--logtype LOGTYPE: LogName kind, 'logname': from Windows EventLog store, 'filepath': exported Windows Event Log file(*.evtx)-l/--loglevel LOGLEVEL: LogLevel filter: available values: critical,error,warning,information,verbose-p/--provider PROVIDER: LogProvider filter-b/--begin BEGINDATE: createAt filter begin time-e/--end ENDDATE: createAt filter end time-r/--raw RAW_QUERY: raw filtering query-h/--help: display help window
MainWindow:
OpenLogWindow:
- open OpenLogWindow at first for convenience
- log filter can be preset by commandline now
- add MSI installer to release
- add eventlog level filter
- add show providers on OpenLogWindow
- add show lognames on OpenLogWindow
Initial Release