Event Description Missing?

[panofish]

I've found everything I've needed from windows events using winevt in python, except the eventid description.
For example, the description for eventid 1502 is:

"The Group Policy settings for the computer were processed successfully. New settings from %6 Group Policy objects were detected and applied."

Is the event description available through winevt?

[bannsec]

Not at the moment. I recall looking into that previously and I believe you obtain those by having to look up the event producing dll and calling some function in it to get a description. Been a while.

On Wed, Mar 2, 2022, 10:02 AM panofish @.***> wrote:

I've found everything I've needed from windows events using winevt in python, except the eventid description. For example, the description for eventid 1502 is:

"The Group Policy settings for the computer were processed successfully. New settings from %6 Group Policy objects were detected and applied."

Is the event description available through winevt?

— Reply to this email directly, view it on GitHub https://github.com/bannsec/winevt/issues/15, or unsubscribe https://github.com/notifications/unsubscribe-auth/AB2HPYEKOVNJDAJH2CPEMT3U557HZANCNFSM5PXWU54A . Triage notifications on the go with GitHub Mobile for iOS https://apps.apple.com/app/apple-store/id1477376905?ct=notification-email&mt=8&pt=524675 or Android https://play.google.com/store/apps/details?id=com.github.android&referrer=utm_campaign%3Dnotification-email%26utm_medium%3Demail%26utm_source%3Dgithub.

You are receiving this because you are subscribed to this thread.Message ID: @.***>