PSEventViewer

PSEventViewer (Get-Events) is really useful PowerShell wrapper around Get-WinEvent. One of the features you may be interested in is a simple way of getting “hidden” events data

Stars125

Forks22

Open issues0

PowerShell Gallery downloads1037716

ReleasePSEventViewer-v3.4.1

Language: C# Updated: 2026-03-30T08:50:25.0000000+00:00

Curated Examples

Query named events

Use PSEventViewer to run a named event query across selected machines.

This pattern is useful when a known troubleshooting query should run against more than one machine.

It comes from the source example at Modules/PSEventViewer/Examples/Example.QueryNamedEventsSMB01.ps1.

When to use this pattern

You have a named event query already defined by the module.
You need to query more than one machine.
You want a short time window instead of scanning the full log.

Example

Import-Module PSEventViewer

$findWinEventSplat = @{
    Type        = 'ADSMBServerAuditV1'
    MachineName = 'Server01', 'Server02'
    Verbose     = $true
}

Find-WinEvent @findWinEventSplat -TimePeriod Last3Days | Format-Table *

What this demonstrates

using a named event query type
targeting multiple machines
limiting the query to a recent time period

Source

Example.QueryNamedEventsSMB01.ps1