ATTENTION: The new home of the Digital Forensics Wiki is at https://forensicswiki.xyz/. Yeah, it's a silly name, but it was cheap.
This wiki will be going offline permanently in the near future. An exact date will be announced soon. Thank you for being a part of this community.
If you wish to work on the new forensicswiki, please join the Google Group forensicswiki-reborn
|OS:||Linux, FreeBSD, NetBSD, OpenBSD, Mac OS X, Windows|
The libevt package contains a library and applications to read Windows Event Log (EVT) files.
Libevt was created by Joachim Metz in 2011.
The libevt package contains the following tools:
- evtinfo, which shows information about EVT files.
- evtexport, which exports information from EVT files.