evtx

Event log parser

Tool to parse Event Viewer logs and extract useful information

C# based evtx parser with lots of extras

GitHub
282 stars
25 watching
59 forks
Language: C#
last commit: 3 months ago
Linked from 1 awesome list

eventeventlogevtxwindows

Backlinks from these awesome lists:

Related projects:

Repository Description Stars
williballenthin/python-evtx A Python module for parsing Windows Event Log files (.evtx) into structured data 732
sumeshi/evtx2es A Python library that enables fast import of Windows Event Logs into Elasticsearch 82
williballenthin/python-evt A Python module for parsing classic Windows Event Log files (.evt) 48
fox-it/dissect.eventlog This is a Python module that parses Windows log file formats 6
yarox24/evtkit Tool to repair Windows Event Log files (.evt) acquired during forensic investigations 18
reed1713/elat A toolset for analyzing Windows event logs to detect and analyze malware 29
williballenthin/evtxtract Reconstructs fragments of event log data from raw binary files, including unallocated space and memory images. 189
adobe-webplatform/eve A JavaScript library for creating custom event handlers with customizable scopes and optional z-index ordering. 319
mdecrevoisier/evtx-to-mitre-attack Provides Windows log event indicators mapped to MITRE ATT&CK tactic and techniques 527
ef-labs/vertx-elasticsearch-service Vert.x implementation of an Elasticsearch service with event bus proxying 57
jdu2600/windows10etwevents Collects and analyzes Windows 10 event tracing data from various providers across different versions. 267
thiber-org/userline Automates analysis of Windows Security Events to identify user logon relations 240
willemdj/erlsom A tool for parsing and generating XML documents in Erlang. 267
sivasamyk/logtrail A Kibana plugin to view, analyze, and search log events from multiple hosts in real-time with a centralized interface. 1,398
jasonish/evebox A web-based event viewer for Suricata EVE events in Elastic Search. 431