python-evt

Event log parser

A Python module for parsing classic Windows Event Log files (.evt)

Pure Python parser for classic Windows Event Log files (.evt)

49 stars

6 watching

11 forks

Language: Python

last commit: over 2 years ago

Linked from 2 awesome lists

Backlinks from these awesome lists:

Related projects:

Repository	Description	Stars
williballenthin/python-evtx	A Python module for parsing Windows Event Log files (.evtx) into structured data	732
williballenthin/evtxtract	Reconstructs fragments of event log data from raw binary files, including unallocated space and memory images.	191
williballenthin/shellbags	This tool helps reconstruct user activities by parsing Windows Registry data.	151
fox-it/dissect.eventlog	Provides parsers for parsing Windows log file formats	6
yarox24/evtkit	Tool to repair Windows Event Log files (.evt) acquired during forensic investigations	18
sumeshi/evtx2es	A Python library that enables fast import of Windows Event Logs into Elasticsearch	82
ericzimmerman/evtx	Tool to parse Event Viewer logs and extract useful information	283
williballenthin/lfle	Recover event log entries from an image by identifying record structures.	27
williballenthin/process-forest	Tools for reconstructing historical process hierarchies from Windows event logs.	146
ecbftw/grokevt	A collection of Python scripts to extract information from Windows event log files	10
reed1713/elat	A toolset for analyzing Windows event logs to detect and analyze malware	29
williballenthin/indxparse	A tool suite for parsing NTFS artifacts and extracting information from INDX files.	215
williballenthin/python-idb	A library that provides read-only access to internal structures of IDA Pro databases and analyzes logical elements from these structures	461
abrignoni/aleapp	An Android log parser and Protobuf analyzer written in Python	536
williballenthin/python-ntfs	A Python library for analyzing and working with NTFS file systems.	81