GrokEVT Logo

GrokEVT

0
Free
Updated 11 March 2025
SIEM
Windows
Event Log
Log Analysis
Python
Scripting
Visit Website

GrokEVT is a collection of scripts built for reading Windows® NT/2K/XP/2K3 event log files. GrokEVT is released under the GNU GPL, and is implemented in Python. The scripts work together on one or more mounted Windows® partitions to extract all information needed (registry entries, message templates, and log files) to convert the logs to a human-readable format.

FEATURES

EXPLORE BY TAGS

Windows

Event Log

Log Analysis

Python

Scripting

SIMILAR TOOLS

Retraced Logo
Retraced

A compliant audit log tool that provides a searchable, exportable record of read/write events.

Free
SIEM
Elastic Logo
Elastic

Elasticsearch is a versatile platform for centralized data storage, fast search, and scalable analytics.

Free
SIEM
Log-Killer Logo
Log-Killer

Tool for deleting logs on Linux/Windows servers.

Free
SIEM
HpfeedsHoneyGraph Logo
HpfeedsHoneyGraph

A visualization app for hpfeeds logs.

Free
SIEM
Blauhaunt Logo
Blauhaunt

A tool collection for filtering and visualizing logon events, designed for experienced DFIR specialists in threat hunting and incident response.

Free
SIEM
nfdump Logo
nfdump

A toolset for collecting and processing netflow/ipfix and sflow data from netflow/sflow compatible devices.

Free
SIEM
LastActivityView Logo
LastActivityView

A tool that collects and displays user activity and system events on a Windows system.

Free
SIEM
zeek2es.py Logo
zeek2es.py

Python application to translate Zeek logs into ElasticSearch's bulk load JSON format with detailed instructions and features.

Free
SIEM
Elastic Security Logo
Elastic Security

Elastic is a search-powered AI company that enables users to find answers from all data in real-time at scale.

Commercial
SIEM

PINNED

Mandos Logo

Mandos

Fractional CISO service that helps B2B companies implement security leadership to win enterprise deals, achieve compliance, and develop strategic security programs.

Consulting
Checkmarx SCA Logo

Checkmarx SCA

A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.

Application Security
Orca Security Logo

Orca Security

A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.

Cloud Security
DryRun Logo

DryRun

A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.

Application Security
CyberSecTools logoCyberSecTools

Explore the largest curated directory of cybersecurity tools and resources to enhance your security practices. Find the right solution for your domain.

Operated by:

Mandos Cyber • KVK: 97994448

Netherlands • contact@mandos.io

Copyright © 2025 - All rights reserved

LINKS
BlogContact
LEGAL
Terms of servicesPrivacy policy