VB.WindowsDNSLogAnalysis

1.1.1

Parse Windows DNS debug logs once, store all records in SQLite, and expose the data through SQL-backed query functions. Designed for internal DNS traffic analysis, troubleshooting, and security investigation.

Minimum PowerShell version

7.0

Installation Options

Copy and Paste the following command to install this package using PowerShellGet More Info

Install-Module -Name VB.WindowsDNSLogAnalysis

Copy and Paste the following command to install this package using Microsoft.PowerShell.PSResourceGet More Info

Install-PSResource -Name VB.WindowsDNSLogAnalysis

You can deploy this package directly to Azure Automation. Note that deploying packages with dependencies will deploy all the dependencies to Azure Automation. Learn More

Manually download the .nupkg file to your system's default download location. Note that the file won't be unpacked, and won't include any dependencies. Learn More

Owners

Vibhu_Bhatnagar

Copyright

Package Details

Author(s)

Vibhu Bhatnagar

Functions

Initialize-VBDNSLogDatabase Import-VBDNSLog Get-VBDNSLog Invoke-VBDNSLogQuery Get-VBDNSLogStatistics Export-VBDNSLogReport

Dependencies

- PSSQLite (>= 1.0.0)

Release Notes

v1.1.1 (2026-05-20)
- Patch release to trigger PSGallery publish (initial publish failed due to missing PSSQLite dependency on CI runner)

v1.1.0 (2026-05-07)
- Renamed module from DNSLogDB to VB.WindowsDNSLogAnalysis
- Added TalkerDetail report type (per-IP query type and protocol breakdown)
- TopTalkers/TopDomains: -Top now optional (omit for all results)
- TopTalkers/TopDomains: summary always shown, no switch needed
- Fixed ResponseCode scoping to response packets only (PacketKind=R)
- Added parse-phase and insert-phase progress bars with real percentage

v1.0.0 (2026-05-07)
- Initial release
- StreamReader + compiled regex parsing engine (2-5 min for 450MB file)
- SHA256 dedup via ImportLog table
- ForEach-Object -Parallel multi-file import (PS7)
- 9 pre-built statistical reports (Get-VBDNSLogStatistics)
- CSV, HTML, XLSX export (Export-VBDNSLogReport)

FileList

VB.WindowsDNSLogAnalysis.nuspec
Documentation\Module_Design.md
Documentation\VB.WindowsDnsLogAnalysisUsage.md
Documentation\dns_log_db_module_architecture.svg
Private\ConvertFrom-VBDNSName.ps1
Private\Get-VBImportStatus.ps1
Private\Invoke-VBBulkInsert.ps1
Private\Invoke-VBDNSLogParser.ps1
Private\Test-VBPrivateIP.ps1
Public\Export-VBDNSLogReport.ps1
Public\Get-VBDNSLog.ps1
Public\Get-VBDNSLogStatistics.ps1
Public\Import-VBDNSLog.ps1
Public\Initialize-VBDNSLogDatabase.ps1
Public\Invoke-VBDNSLogQuery.ps1
README.md
VB.WindowsDNSLogAnalysis.psd1
VB.WindowsDNSLogAnalysis.psm1

Version History

Version	Downloads	Last updated
1.1.1 (current version)	10	5/20/2026