How to read Windows Log evt/evtx files using java

Question

I was wondering is there any java library to read evt/evtx files.

Already referred links

How to read .evtx extension file through java program

Reading .evt/.evtx files directly

I found we can use

Get-WinEvent -Path c:\path\to\eventlog.evtx | Export-Csv eventlog.csv

But I need run this in Windows 2003, where PowerShell is not available.

Is there any java library available for the evtx files? – Stenal P Jolly Mar 26 '17 at 13:02 — Stenal P Jolly, Mar 26 '17 at 13:02

Ansgar Wiechers · Accepted Answer · 2017-03-21T10:18:48.967

3

PowerShell v2 is available for Windows Server 2003. Also, there's wevtutil for managing eventlogs from the regular commandline:

wevtutil query-events Application /c:3 /rd:true /f:text

and LogParser for extracting information from various data sources, including eventlogs and eventlog files:

logparser -i:EVT -o:CSV "SELECT TOP 3 * FROM exported.evtx"

edited Mar 21 '17 at 10:18

answered Mar 21 '17 at 10:11

Ansgar Wiechers

Is logparser open-sourced? If so, where can i find the code – Stenal P Jolly Mar 26 '17 at 13:03
*"Is logparser open-sourced?"* Not that I know of. – Ansgar Wiechers Mar 26 '17 at 22:02
`wevutil` is deprecated now – Liam Mar 02 '20 at 15:13

1 Answers1