Jump to content

[solved] Minuplate Event Viewer Secutrity Log

avery

By avery,
in AutoIt General Help and Support

 Share

Recommended Posts

avery Prodigy

avery

Posted
Posted (edited)

I am trying to work with windows event viewer security log. I've seen some pro's use dll calls and wmi stuff. Can any of that help me here I wonder?

My ToDo List:

1. Read the event log into a GUICtrlCreateEdit. I know how to get the log there but it appears to be binary stuff :D

2. Save the event log. If I can find out how to save the current event log and select the CSV format then I would be able to solve issue number 1. also.

3. Clear the event log. I'm pretty sure I can do this by just coping the current security log to my archive location. I'll test this once I find out if I can make 1 and 2 happen ;)

I searched for help before I posted this and found the below article.

http://www.autoitscript.com/forum/index.ph...;hl=eventviewer

^ This does what I want but it uses the GUI to click things. I was attempting to make this more of a background process.

I think I was spoiled by Perl as it had some win32 module that would read/write/clear event logs. I was able to parse them. Tally up the events and present a report based on the findings. I'm trying to move away from perl and rewrite it using autoit3.

I should invest in a book or something :\

I really appreciate any help possible.

Respectfully,

Avery

Edited by avery
www.abox.orgAvery HowellVisit My AutoIt Websitehttp://www.abox.org
Link to comment
Share on other sites
spudw2k Universalist

spudw2k

Posted
Posted

I recommend searching for LogParser. I tool to view and query Event Logs and Logs of other various formats with SQL like syntax. It has a dll with can be used as a com object in AutoIt.

Spoiler

Things I've Made: Always On Top Tool ◊ AU History ◊ Deck of CardsHideItICUIcon FreezerIpod EjectorJunos Configuration ExplorerLink DownloaderMD5 Folder EnumeratorPassGen ◊ Ping ToolQuick NICRead OCRRemoteITSchTasksGuiSpyCamSystem Scan Report ToolSystem UpTimeTransparency Machine VMWare ESX Builder
Misc Code Snippets: ADODB ExampleCheckHover ◊ Detect SafeModeDynEnumArrayGetNetStatData ◊ HashArrayIsBetweenDates Local AdminsMake ChoiceRecursive File ListRemove Sizebox StyleRetrieve PNPDeviceIDRetreive SysListView32 ContentsSet IE Homepage Tickle Expired PasswordTranspose Array
Projects: Drive Space Usage GUI ◊ LEDkITPlasma_kIt ◊ Scan Engine BuilderSpeeDBurnerSubnetCalc
Cool Stuff: AutoItObject UDF Extract Icon From ProcGuiCtrlFontRotateHex Edit FuncsRun binaryService_UDF

 

Link to comment
Share on other sites
avery Prodigy

avery

Posted
  • Author
Posted

I recommend searching for LogParser. I tool to view and query Event Logs and Logs of other various formats with SQL like syntax. It has a dll with can be used as a com object in AutoIt.

Thank you. I was able to find it very easy. Now back to breaking things until they work ;)

http://www.microsoft.com/downloads/details...b2-f8d975cf8c07

www.abox.orgAvery HowellVisit My AutoIt Websitehttp://www.abox.org
Link to comment
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
 Share
Go to topic listing

  • Recently Browsing   0 members

    • No registered users viewing this page.
×
×
  • Create New...