evtx

Parse and analyze Windows XML Event Log (.evtx) files

brewmacoslinux

Try with needOr install directly

About

Windows XML Event Log parser

evtx_dumpevtx

Dump all events from an Event Log file to JSON format$ evtx_dump /path/to/Security.evtx

Parse Event Log and output in JSON with pretty printing$ evtx_dump -o json /path/to/System.evtx

Extract specific events and filter by Event ID$ evtx_dump /path/to/Application.evtx | grep -i 'EventID'