Open infosec-intern opened 8 years ago
Here's what I get when I run this version:
PS C:\Users\IEUser\Desktop\DeepBlueCLI-master> .\DeepBlue.ps1 Get-WinEvent -FilterHashtable @{Logname="Security";ID=4688,4720,4728,4732,4625} -ErrorAction Stop Get-WinEvent error: A positional parameter cannot be found that accepts argumen t '4>'.
Exiting...
PS C:\Users\IEUser\Desktop\DeepBlueCLI-master>
I am testing on PS 2 on Win7 SP1, I'd like to maintain compatibility with that
FYI, Win 7 trial VMs are available here: https://developer.microsoft.com/en-us/microsoft-edge/tools/vms/
Thanks for the feedback, I'll revisit it tonight and start testing against PS2
Tested some more with the Windows 7 VM from Microsoft. Looks like everything runs just as well as on Windows 10
I tried to preserve at least part of the previous text output by using the Write-{Verbose,Debug,Warning} functions
I've found that the descriptions (or Message attribute) look much better when piped to Format-List because they are output as arrays and don't get enough screen real estate otherwise
Thoughts on the output formats or anything else? Suggestions are always welcome