Update README.md

2016-09-20 12:24:20 -04:00
parent a2a77450ff
commit 7adb6214bf
1 changed files with 43 additions and 1 deletions
--- a/README.md
+++ b/README.md
@ -1 +1,43 @@
 # DeepBlueCLI
+
+DeepBlueCLI 0.1 Beta
+Eric Conrad, Backshore Communications, LLC
+deepblue <at> backshore <dot> net
+Twitter: @eric_conrad
+http://ericconrad.com
+
+Sample evtx files are in the .\evtx directory
+
+## Usage:
+
+`
+.\DeepBlue.ps1 <event log name> <evtx filename>
+`
+
+## Examples:
+
+Process local Windows security event log:
+`
+.\DeepBlue.ps1
+`
+or:
+`
+.\DeepBlue.ps1 -log security
+`
+Process local Windows system event log:
+`
+.\DeepBlue.ps1 -log system
+`
+or:
+`
+.\DeepBlue.ps1 "" system
+`
+Process evtx file:
+`
+.\DeepBlue.ps1 .\evtx\new-user-security.evtx
+`
+or:
+`
+.\DeepBlue.ps1 -file .\evtx\new-user-security.evtx
+`
+