Logdissect
0 (0)
Logdissect is a CLI utility and Python library for analyzing log files and other data.
python-evtx is a pure Python parser for recent Windows Event Log files (those with the file extension ".evtx"). The module provides programmatic access to the File and Chunk headers, record templates, and event entries. For example, you can use python-evtx to review the event logs of Windows 7 systems from a Mac or Linux workstation. The structure definitions and parsing strategies were heavily inspired by the work of Andreas Schuster and his Perl implementation "Parse-Evtx".
Logdissect is a CLI utility and Python library for analyzing log files and other data.
GrokEVT is a tool for reading Windows event log files and converting them to a human-readable format.
A method for log volume reduction without losing analytical capability.
Apache Metron is a centralized tool for security monitoring and analysis that integrates various open-source big data technologies.
Windows Event Log Analyzer with logon timeline generator and noise reduction for fast forensics.
Elasticsearch is a versatile platform for centralized data storage, fast search, and scalable analytics.