libevt
libevt is a library to access the Windows Event Log (EVT) format.The library provides a way to read and parse EVT files, which are used to store event logs in Windows operating systems.libevt is open-source and licensed under the LGPLv3+ license.It is currently in the alpha stage and has a wiki page with documentation and instructions on how to build from source.
FEATURES
EXPLORE BY TAGS
SIMILAR TOOLS
Magnet ACQUIRE offers robust data extraction capabilities for digital forensics investigations, supporting a wide range of devices.
A digital investigation platform for parsing, searching, and visualizing evidences with advanced analytics capabilities.
A reverse engineering framework with a focus on usability and code cleanliness
Rekall is a discontinued project that aimed to improve memory analysis methodology but faced challenges due to the nature of in-memory structure and increasing security measures.
DFIR ORC Documentation provides detailed instructions for setting up the build environment and deploying the tool.
Toolkit for post-mortem analysis of Docker runtime environments using forensic HDD copies.
Anti-forensics tool for Red Teamers to erase footprints and test incident response capabilities.
PINNED
Mandos
Fractional CISO service that helps B2B companies implement security leadership to win enterprise deals, achieve compliance, and develop strategic security programs.
Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.
Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.
DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.