# Windows Event Log

## Dump Logfile

Windows Event Logfiles can be dumped via
```sh
evtx_dump $EVENT_LOG > event.log
evtx_dump -o json $EVENT_LOG > event.log
```