← All tools

evtx2es

https://pypi.org/project/evtx2es/

Open Source

Categories

Forensics

Description

A fast library for parsing and importing Windows Event Logs into Elasticsearch.

Keywords

dfir elasticsearch eventlog evtx forensics parser python windows

Example Usage

$ evtx2es /path/to/your/file.evtx

See also

An OSINT / digital forensics tool built in Python…

Free GUI front-end for Volatility 3 memory forensics framework on Windows. Simplifies memory analysi…

Provides various Windows Server Active Directory (AD) security-focused reports.…

MalwareDB: bookkeeping for malware, goodware, and unknown files with relationship discovery…

Digital forensics platform and graphical interface to The Sleuth Kit. Features timeline analysis, ke…

A collection of PowerShell modules designed for artifact gathering and reconnaisance of Windows-base…