8000 GitHub - janstarke/evtxview: evtxview is a GUI viewer for Microsoft Windows evtx files (Windows event logs). I'm hacking this tiny tool because I need such a tool in most forensic investigations.
[go: up one dir, main page]
More Web Proxy on the site http://driver.im/
Skip to content
/ evtxview Public

evtxview is a GUI viewer for Microsoft Windows evtx files (Windows event logs). I'm hacking this tiny tool because I need such a tool in most forensic investigations.

License

GPL-3.0 license
14 stars 1 fork Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

janstarke/evtxview

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

6 Commits
doc/images
doc/images
 
 
.gitignore
.gitignore
 
 
LICENSE
LICENSE
 
 
evtxview.py
evtxview.py
 
 
layout.ui
layout.ui
 
 
readme.md
readme.md
 
 
requirements.txt
requirements.txt
 
 

Repository files navigation

evtxview

evtxview is a GUI viewer for Microsoft Windows evtx files (Windows event logs). I'm hacking this tiny tool because I need such a tool in most forensic investigations.

Screenshots

evtxview in action

Installation

# create a virtual environment
python3 -m venv venv

# activate virtual environment
source venv/bin/activate

# install required packages
pip3 install -r requirements.txt

Usage

As this is a GUI-only tool, usage is simple:

# load virtual environment, unless you did that already
source venv/bin/activate

# start evtxview
python3 evtxview.py

That's it ;-)

Features

  • You can open as many evtx files as you need to

About

evtxview is a GUI viewer for Microsoft Windows evtx files (Windows event logs). I'm hacking this tiny tool because I need such a tool in most forensic investigations.

Resources

Readme

License

GPL-3.0 license
Activity

Stars

14 stars

Watchers

4 watching

Forks

1 fork
Report repository

Releases

No releases published

Packages

No packages published

Languages
0