secabstraction/ExportElastic.ps1

Created February 16, 2016 18:54

Star (0) You must be signed in to star a gist
Fork (0) You must be signed in to fork a gist

Select an option

Learn more about clone URLs
Clone this repository at <script src="https://gist.github.com/secabstraction/561d8f2ca9f9cdefc20c.js"></script>
Save secabstraction/561d8f2ca9f9cdefc20c to your computer and use it in GitHub Desktop.

Download ZIP

Revisions

secabstraction created this gist Feb 16, 2016.

ExportElastic.ps1

-Original file line number
+Diff line change
@@ -0,0 +1,5 @@
+    # First lets collect some objects
+    $Logons = Get-CimInstance -ClassName Win32_NtLogEvent -Filter "LogFile='Security' AND EventCode='4624'"
+    # Now for the export
+    $Logons | Export-Elastic -Node http://myelastic:9200