PowerShellscripting~30 mins

Named captures in PowerShell - Mini Project: Build & Apply

Choose your learning style9 modes available

Learn Why Deep Visual Try Challenge Project Recall Time

Extracting Information Using Named Captures in PowerShell

📖 Scenario: You have a list of log entries from a server. Each entry contains a date, a log level, and a message. You want to extract these parts separately to analyze the logs easily.

🎯 Goal: Build a PowerShell script that uses named captures in a regular expression to extract the date, level, and message from each log entry.

📋 What You'll Learn

Create a list of log entries as strings

Define a regex pattern with named captures for date, level, and message

Use a loop to apply the regex to each log entry

Print the extracted parts in a clear format

💡 Why This Matters

🌍 Real World

Logs from servers or applications often need parsing to find errors or important events. Named captures help extract useful parts easily.

💼 Career

Many IT and automation jobs require processing logs or text data. Knowing how to use named captures in PowerShell is a valuable skill for system administrators and automation engineers.

Progress0 / 4 steps

Create the list of log entries

Create a variable called logs that contains exactly these three strings: '2024-06-01 ERROR Failed to connect to database', '2024-06-01 INFO Connection established', and '2024-06-02 WARN Low disk space'.

PowerShell

# Create the list of log entries
# Your code here

Need a hint?

Use an array with @( ... ) and include the exact strings inside quotes.

Define the regex pattern with named captures

Create a variable called pattern and assign it a regex string that uses named captures for date, level, and message. The pattern should match the date in YYYY-MM-DD format, the log level as a word, and the rest as the message.

PowerShell

$logs = @(
    '2024-06-01 ERROR Failed to connect to database',
    '2024-06-01 INFO Connection established',
    '2024-06-02 WARN Low disk space'
)

# Define the regex pattern with named captures
# Your code here

Need a hint?

Use (?pattern) syntax for named captures in PowerShell regex.

Extract parts using the regex in a loop

Use a foreach loop with variable log to go through $logs. Inside the loop, use [regex]::Match($log, $pattern) to get the match. Store it in a variable called match. Then extract the named groups date, level, and message from match.Groups.

PowerShell

$logs = @(
    '2024-06-01 ERROR Failed to connect to database',
    '2024-06-01 INFO Connection established',
    '2024-06-02 WARN Low disk space'
)

$pattern = '(?\d{4}-\d{2}-\d{2}) (?\w+) (?.+)'

# Loop through logs and extract named groups
# Your code here

Need a hint?

Use foreach ($log in $logs) and [regex]::Match() to get the match object.

Print the extracted parts

Inside the foreach loop, add a Write-Output statement that prints the extracted parts in this format: Date: [date], Level: [level], Message: [message] using an interpolated string.

PowerShell

$logs = @(
    '2024-06-01 ERROR Failed to connect to database',
    '2024-06-01 INFO Connection established',
    '2024-06-02 WARN Low disk space'
)

$pattern = '(?\d{4}-\d{2}-\d{2}) (?\w+) (?.+)'

foreach ($log in $logs) {
    $match = [regex]::Match($log, $pattern)
    $date = $match.Groups['date'].Value
    $level = $match.Groups['level'].Value
    $message = $match.Groups['message'].Value
    # Print the extracted parts
    # Your code here
}

Need a hint?

Use Write-Output with a double-quoted string and variables inside to print the message.