From Forensics Wiki
Revision as of 04:05, 21 July 2012 by Joachim Metz
|OS:||Linux, FreeBSD, NetBSD, OpenBSD, Mac OS X, Windows|
The libevt package contains a library and applications to read Windows Event Log (EVT) files.
Libevt was created by Joachim Metz in 2011.
The libevt package contains the following tools:
- evtinfo, which shows information about EVT files.
- evtexport, which exports information from EVT files.