Skip to content

yarox24/evtkit

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

8 Commits

LICENSE

LICENSE

 
 

README.md

README.md

 
 

evtkit.py

evtkit.py

 
 

Repository files navigation

evtkit

Fix acquired .evt - Windows Event Log files (Forensics)

Requirements

  • Python 2 (not tested on 3)
  • no external dependencies

Usage

Fix in-place 2 files (Make sure you got a copy!):

evtkit.py AppEvent.Evt SysEvent.Evt

Find all *.evt files in evt_dir/, copy them to fixed_copy/ and repair them:

evtkit.py --copy_to_dir=fixed_copy evt_dir

Options

-h, --help                                 show this help message and exit
-c COPY_TO_DIR, --copy_to_dir COPY_TO_DIR
                                           Output directory for fixed .evt files.
-q, --quiet                                Turn off verbosity

About

Fix acquired .evt - Windows Event Log files (Forensics)

Resources

Readme

License

MIT license
Activity

Stars

17 stars

Watchers

4 watching

Forks

4 forks
Report repository

Releases 1

evtkit 0.2 Latest
Mar 29, 2016

Packages

No packages published

Languages