From the course: Network Forensics
Unlock the full course today
Join today to access over 22,600 courses taught by industry experts or purchase this course individually.
Microsoft Log Parser
- [Instructor] Despite of its age, Microsoft Log Parser is still a popular command line tool. It provides a SQL interface that allows its users to search for and to manipulate the log messages of their own interest. One of the primary features of Microsoft Log Parser is an ability to run SQL-like queries on log files regardless of their original format such as XML text, or internet information services or IIS log files. The retrieved information produced as part of a query can appear on a console in a file or go back to a database. Microsoft Log Parser can also generate HTML report and make queries against Windows Event Viewer Logs, Active Directory, Windows Registry etc. The latest Microsoft Log Parser version is 2.2 and you can download it at this website. They also have a graphical user interface front-end of Microsoft Log Parser called Log Parser Lizard. You still need to install Microsoft Log Parser before you try to run Log Parser Lizard. Let's try Microsoft Log Parser. I'd like…
Contents
-
-
-
-
-
(Locked)
Network logs3m 6s
-
(Locked)
Intrusion and security events5m 2s
-
(Locked)
Network logs as evidence3m 16s
-
(Locked)
Network logs and compliance3m 12s
-
(Locked)
Audit logs3m 28s
-
(Locked)
Firewall logs4m 23s
-
(Locked)
syslog6m 14s
-
(Locked)
syslog-ng6m 31s
-
(Locked)
Kiwi Syslog Server2m 39s
-
(Locked)
Microsoft Log Parser4m 34s
-
(Locked)
-
-
-