# Windows Event Log
## Dump Logfile
Windows Event Logfiles can be dumped via
```sh
evtx_dump $EVENT_LOG > event.log
evtx_dump -o json $EVENT_LOG > event.log
```