python-evtx Logo

python-evtx

0
Free
SIEM
windows
event-log
python
file-analysis
binary-security
Visit Website

python-evtx is a pure Python parser for recent Windows Event Log files (those with the file extension ".evtx"). The module provides programmatic access to the File and Chunk headers, record templates, and event entries. For example, you can use python-evtx to review the event logs of Windows 7 systems from a Mac or Linux workstation. The structure definitions and parsing strategies were heavily inspired by the work of Andreas Schuster and his Perl implementation "Parse-Evtx".

FEATURES

ALTERNATIVES

Alien Vault Ossim Logo
Alien Vault Ossim

AlienVault OSSIM provides an all-in-one security management solution with asset discovery, vulnerability assessment, and SIEM capabilities.

Free
SIEM
Zircolite Logo
Zircolite

Standalone SIGMA-based detection tool for EVTX, Auditd, Sysmon for Linux, XML or JSONL/NDJSON Logs.

Free
SIEM
Procmon for Linux Logo
Procmon for Linux

Procmon for Linux is a reimagining of the classic Procmon tool from Windows, allowing Linux developers to trace syscall activity efficiently.

Free
SIEM
LogonTracer Logo
LogonTracer

Investigate malicious logons by visualizing and analyzing Windows Active Directory event logs with LogonTracer.

Free
SIEM
aws-logsearch Logo
aws-logsearch

Search AWS CloudWatch logs on the command line with aws-sdk-for-go.

Free
SIEM
NodeSecure Logo
NodeSecure

Cybersecurity project for security monitoring of Node.js applications.

Free
SIEM
Log Parser Lizard Logo
Log Parser Lizard

A dynamic GUI for advanced log analysis, allowing users to execute SQL queries on structured log data.

Free
SIEM
Sysdig Logo
Sysdig

Sysdig is a system visibility tool with native container support.

Free
SIEM

PINNED

InfoSecHired Logo

InfoSecHired

An AI-powered career platform that automates the creation of cybersecurity job application materials and provides company-specific insights for job seekers.

Commercial
Resources
Fabric Platform by BlackStork Logo

Fabric Platform by BlackStork

Fabric Platform is a cybersecurity reporting solution that automates and standardizes report generation, offering a private-cloud platform, open-source tools, and community-supported templates.

Free
Security Operations
Mandos Brief Newsletter Logo

Mandos Brief Newsletter

Stay ahead in cybersecurity. Get the week's top cybersecurity news and insights in 8 minutes or less.

Free
Blogs and News
Wiz Logo

Wiz

Wiz Cloud Security Platform is a cloud-native security platform that enables security, dev, and devops to work together in a self-service model, detecting and preventing cloud security threats in real-time.

Commercial
Cloud Security
RoboShadow Logo

RoboShadow

A cybersecurity platform that offers vulnerability scanning, Windows Defender and 3rd party AV management, and MFA compliance reporting, among other features.

Commercial
Vulnerability Management
Adversa AI Logo

Adversa AI

Adversa AI is a cybersecurity company that provides solutions for securing and hardening machine learning, artificial intelligence, and large language models against adversarial attacks, privacy issues, and safety incidents across various industries.

Commercial
AI Security
CyberSecTools logoCyberSecTools

Explore the largest curated directory of cybersecurity tools and resources to enhance your security practices. Find the right solution for your domain.

Copyright © 2024 - All rights reserved

LINKS
Blog
LEGAL
Terms of servicesPrivacy policy