libevtx Logo

libevtx

0
Free
Visit Website

libevtx is a library to access the Windows XML Event Log (EVTX) format. It provides a way to access and parse EVTXML files, allowing for the extraction of useful information from Windows event logs. The library is written in C and provides a Python binding, making it a useful tool for digital forensics and incident response. It is licensed under the LGPLv3+ and is currently in the alpha stage, with multi-threading support planned for future development. For more information, users can access the project documentation and building instructions on the GitHub wiki.

FEATURES

ALTERNATIVES

Review of various MFT parsers used in digital forensics for analyzing NTFS file systems.

Accessing databases stored on a machine by the Chrome browser and dumping URLs found.

A shell script for basic forensic collection of various artefacts from UNIX systems.

A library to access and parse OLE 2 Compound File (OLECF) format files.

A reconnaissance tool for GitHub organizations

Yara pattern matching tool for forensic investigations with predefined rules for magic headers in files and raw images.

A digital forensics tool that provides read-only access to file-system objects from various storage media types and file formats.

ID-spoofing NFS client

CyberSecTools logoCyberSecTools

Explore the largest curated directory of cybersecurity tools and resources to enhance your security practices. Find the right solution for your domain.

Copyright © 2024 - All rights reserved