Difference between revisions of "Libevt"

From ForensicsWiki
Jump to: navigation, search
(Created page with "{{Infobox_Software | name = libevt | maintainer = Joachim Metz | os = Linux, FreeBSD, NetBSD, OpenBSD, Mac OS X, Windows | genre = {{Analys...")
 
Line 8: Line 8:
 
}}
 
}}
  
The '''libevt''' package contains a library and applications to read [[EVT | Windows Event Log (EVT)]] files.
+
The '''libevt''' package contains a library and applications to read [[Windows Event Log (EVT)]] files.
  
 
== History ==  
 
== History ==  

Revision as of 05:05, 21 July 2012

libevt
Maintainer: Joachim Metz
OS: Linux, FreeBSD, NetBSD, OpenBSD, Mac OS X, Windows
Genre: Analysis
License: LGPL
Website: code.google.com/p/libevt/

The libevt package contains a library and applications to read Windows Event Log (EVT) files.

History

Libevt was created by Joachim Metz in 2011.

Tools

The libevt package contains the following tools:

  • evtinfo, which shows information about EVT files.
  • evtexport, which exports information from EVT files.

External Links