libevt is a library to access the Windows Event Log (EVT) format.The library provides a way to read and parse EVT files, which are used to store event logs in Windows operating systems.libevt is open-source and licensed under the LGPLv3+ license.It is currently in the alpha stage and has a wiki page with documentation and instructions on how to build from source.
FEATURES
EXPLORE BY TAGS
SIMILAR TOOLS
A library for accessing and parsing Microsoft Internet Explorer cache files (index.dat) to extract URLs, timestamps, and cached content for digital forensic analysis.
Exterro is a data risk management platform that optimizes e-discovery, digital forensics, and cybersecurity compliance operations.
Free software for extracting Microsoft cabinet files, supporting all features and formats of Microsoft cabinet files and Windows CE installation files.
A library to access the Windows New Technology File System (NTFS) format with read-only support for NTFS versions 3.0 and 3.1.
An open source format for storing digital evidence and data, with a C/C++ library for creating, reading, and manipulating AFF4 images.
A library for accessing and parsing Windows NT Registry File (REGF) format files, designed for digital forensics and registry analysis applications.
A library to access and parse Windows XML Event Log (EVTX) format, useful for digital forensics and incident response.
A library to access FileVault Drive Encryption (FVDE) encrypted volumes on Mac OS X systems.
A PowerShell-based incident response and live forensic data acquisition tool for Windows hosts.
PINNED

Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.

Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.

DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.