{"author_name":"hagure_m","image_url":null,"provider_url":"https://hatena.blog","version":"1.0","author_url":"https://blog.hatena.ne.jp/hagure_m/","description":"\u3010\u30c4\u30fc\u30eb\u306e\u6982\u8981\u3011 \u30fb\u30a4\u30d9\u30f3\u30c8\u30ed\u30b0\u3092\u9805\u76ee\u6307\u5b9a\u3057\u3066\u62bd\u51faCSV\u306b\u66f8\u304d\u51fa\u3059\u30b9\u30af\u30ea\u30d7\u30c8\u3002 \u30fb\u30a4\u30d9\u30f3\u30c8\u30ed\u30b0\u306e\u30d7\u30ed\u30d1\u30c6\u30a3\u3068Get-Winevent\u30b3\u30de\u30f3\u30c9\u30ec\u30c3\u30c8\u306b\u95c7\u304c\u591a\u3059\u304e\u3066\u7406\u89e3\u3057\u304d\u308c\u3066\u306a\u3044\u306e\u3067\u3001\u3053\u306e\u8a18\u4e8b\u306f\u534a\u5206\u30e1\u30e2\u3092\u517c\u306d\u3066\u3044\u307e\u3059\u3002 \u3010\u74b0\u5883\uff08\u4f7f\u3063\u3066\u3044\u308b\u74b0\u5883\uff09\u3011 \u30fbWindows server 2016\uff08\u5404\u6587\u732e\u306b\u306f2008R2\u4ee5\u964d\u3068\u66f8\u3044\u3066\u3042\u308b\u3063\u307d\u3044\uff09 \u30fbPowershell ver2.0\u4ee5\u964d\uff1f\uff08\u516c\u5f0f\u304c\u898b\u5f53\u305f\u3089\u306a\u3044\u3051\u3069\u304a\u305d\u3089\u304f\uff09 \u3010\u30bd\u30fc\u30b9\uff08get_eventlog.ps1\uff09\u3011 $MESSAGES = Get-WinEvent ` -logname security ` -FilterXPath ` \"Event \u2026","categories":["Powershell"],"blog_url":"https://hagure-m.hateblo.jp/","provider_name":"Hatena Blog","width":"100%","blog_title":"\u3046\u307e\u304f\u52d5\u3051\u3070\u3044\u3044\u306a\uff01","type":"rich","html":"<iframe src=\"https://hatenablog-parts.com/embed?url=https%3A%2F%2Fhagure-m.hateblo.jp%2Fentry%2F2018%2F10%2F02%2F150205\" title=\"\u3010PowerShell\u3011\uff08\u30b5\u30fc\u30d0\u4fdd\u5b88\uff09\u30a4\u30d9\u30f3\u30c8\u30ed\u30b0\u306e\u30ed\u30b0\u30aa\u30f3\u5c65\u6b74\u62bd\u51fa\u3001CSV\u5316\uff08Get-WinEvent\uff09 - \u3046\u307e\u304f\u52d5\u3051\u3070\u3044\u3044\u306a\uff01\" class=\"embed-card embed-blogcard\" scrolling=\"no\" frameborder=\"0\" style=\"display: block; width: 100%; height: 190px; max-width: 500px; margin: 10px 0px;\"></iframe>","url":"https://hagure-m.hateblo.jp/entry/2018/10/02/150205","title":"\u3010PowerShell\u3011\uff08\u30b5\u30fc\u30d0\u4fdd\u5b88\uff09\u30a4\u30d9\u30f3\u30c8\u30ed\u30b0\u306e\u30ed\u30b0\u30aa\u30f3\u5c65\u6b74\u62bd\u51fa\u3001CSV\u5316\uff08Get-WinEvent\uff09","height":"190","published":"2018-10-02 15:02:05"}