Ars Technica

Windows Event Log - why so complicated?

I'm writing a Windows app in unmanaged C++ and want to log some simple events to the Application log. I'm normally a *nix guy and am used to being able to just call syslog() (or asl(3) on Mac OS X). I ...
Redmond Magazine

Where To Go For Hyper-V Troubleshooting Information

When an unexpected problem occurs in a Windows environment, the first step in resolving that problem is usually to gather information. After all, you need to know what happened before you can fix it.
Ars Technica

Extracting Windows Event logs to a SQL Database, is this a silly plan?

I have visions of regularly dumping and clearing Windows event logs and storing them in the medium-long term in a SQL database.<BR><BR>Why? So I can query them -<BR>"Show me all previous occurances of ...
TWCN Tech News

How to use Event Viewer in Windows 11

Custom Views: The Custom Views panel allows you to create custom views with different filters. For example, if you want to see only the error logs, you can create a ...
TWCN Tech News

How to export Windows Event logs with PowerShell

Here are the three commands to extract Even logs using PowerShell. Using Get-WinEvent Using Get-EventLog Using wevtutil for Raw EVTX Logs You can run these commands on PowerShell or Windows Terminal.
Bleeping Computer

JPCERT shares Windows Event Log tips to detect ransomware attacks

Finding ransomware traces in Event Logs The investigation strategy proposed by JPCERT/CC covers four types of Windows Event Logs: Application, Security, System, and Setup logs. These logs often ...