From 7adb6214bf71fd9de8b71bdcf384a95416972d76 Mon Sep 17 00:00:00 2001
From: Eric Conrad <git@zez.me>
Date: Tue, 20 Sep 2016 12:24:20 -0400
Subject: [PATCH] Update README.md

---
 README.md | 44 +++++++++++++++++++++++++++++++++++++++++++-
 1 file changed, 43 insertions(+), 1 deletion(-)

diff --git a/README.md b/README.md
index afaafe3..c7fe248 100644
--- a/README.md
+++ b/README.md
@@ -1 +1,43 @@
-# DeepBlueCLI
\ No newline at end of file
+# DeepBlueCLI
+
+DeepBlueCLI 0.1 Beta
+Eric Conrad, Backshore Communications, LLC
+deepblue <at> backshore <dot> net
+Twitter: @eric_conrad
+http://ericconrad.com
+
+Sample evtx files are in the .\evtx directory
+
+## Usage:
+
+`
+.\DeepBlue.ps1 <event log name> <evtx filename>
+`
+
+## Examples:
+
+Process local Windows security event log:
+`
+.\DeepBlue.ps1
+`
+or:
+`
+.\DeepBlue.ps1 -log security
+`
+Process local Windows system event log:
+`
+.\DeepBlue.ps1 -log system
+`
+or:
+`
+.\DeepBlue.ps1 "" system
+`
+Process evtx file:
+`
+.\DeepBlue.ps1 .\evtx\new-user-security.evtx
+`
+or:
+`
+.\DeepBlue.ps1 -file .\evtx\new-user-security.evtx
+`
+