Difference between pages "Hacking Bootcamp: Exploits and Live Incident Investigation" and "Libevtx"

From Forensics Wiki
(Difference between pages)
Jump to: navigation, search
 
 
Line 1: Line 1:
#REDIRECT [[Zombies and Botnets: Setup-Investigate-Shutdown]]
+
{{Infobox_Software |
 +
  name = libevt |
 +
  maintainer = [[Joachim Metz]] |
 +
  os = [[Linux]], [[FreeBSD]], [[NetBSD]], [[OpenBSD]], [[Mac OS X]], [[Windows]] |
 +
  genre = {{Analysis}} |
 +
  license = {{LGPL}} |
 +
  website = [http://code.google.com/p/libevtx/ code.google.com/p/libevtx/] |
 +
}}
 +
 
 +
The '''libevtx''' package contains a library and applications to read [[Windows XML Event Log | Windows XML Event Log (EVTX)]] files.
 +
 
 +
== History ==
 +
 
 +
Libevtx was created by [[Joachim Metz]] in 2011.
 +
 
 +
== Tools ==
 +
The '''libevtx''' package contains the following tools:
 +
* '''evtxinfo''', which shows information about EVTX files.
 +
* '''evtxexport''', which exports information from EVTX files.
 +
 
 +
== External Links ==
 +
 
 +
* [http://code.google.com/p/libevtx/ libevtx project site]

Revision as of 13:18, 10 June 2012

libevt
Maintainer: Joachim Metz
OS: Linux, FreeBSD, NetBSD, OpenBSD, Mac OS X, Windows
Genre: Analysis
License: LGPL
Website: code.google.com/p/libevtx/

The libevtx package contains a library and applications to read Windows XML Event Log (EVTX) files.

History

Libevtx was created by Joachim Metz in 2011.

Tools

The libevtx package contains the following tools:

  • evtxinfo, which shows information about EVTX files.
  • evtxexport, which exports information from EVTX files.

External Links