Skip to content

Releases: blauwers/Export-AzLogAnalytics

Initial Release

27 Apr 20:50
80f05d2
Compare
Choose a tag to compare

Initial Release — Export-AzLogAnalyticsBins.ps1

Overview

This is the first public release of Export-AzLogAnalyticsBins.ps1 — a PowerShell script designed to efficiently export large datasets from Azure Log Analytics or Microsoft Sentinel workspaces.

It dynamically sizes time bins based on record volumes, automatically handles retries for throttled or failed queries, and outputs compressed NDJSON files with a manifest for easy tracking.

Features

  • Export Log Analytics or Sentinel tables to compressed .ndjson.gz files
  • Adaptive time binning based on record count
  • Automatic retries with exponential backoff on query failures
  • Manifest CSV tracks all exported files
  • Highly configurable (time slices, max records, retries, query timeout, etc.)
  • Built-in error handling and progress tracking
  • Supports very large data exports

Installation

No installation required — simply download the Export-AzLogAnalyticsBins.ps1 script and run it from PowerShell.

Requires:

  • PowerShell 5.x or later
  • Azure modules: Az.Accounts and Az.OperationalInsights

Usage Example

.\Export-AzLogAnalyticsBins.ps1 `
  -WorkspaceId '00000000-0000-0000-0000-000000000000' `
  -TableName 'SigninLogs' `
  -StartDate '2023-01-01T00:00:00Z' `
  -EndDate '2023-03-01T00:00:00Z' `
  -Verbose

License

Released under the MIT License.

Thank you for checking it out! Feedback, issues, and contributions are welcome.

Version

v1.0.0 — Initial Release