Libevtx

From Forensics Wiki
Revision as of 13:17, 10 June 2012 by Joachim Metz (Talk | contribs)

(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)
Jump to: navigation, search
libevt
Maintainer: Joachim Metz
OS: Linux, FreeBSD, NetBSD, OpenBSD, Mac OS X, Windows
Genre: Analysis
License: LGPL
Website: code.google.com/p/libevtx/

The libevtx package contains a library and applications to read Windows XML Event Log (EVTX) files.

History

Libevtx was created by Joachim Metz in 2011.

Tools

The libevtx package contains the following tools:

  • evtxinfo, which shows information about EVT files.
  • evtxexport, which exports information from EVT files.

External Links