evtxdump.py
parser for recent Windows Event Log files -- Python 2 version
Install
- All systems
-
curl cmd.cat/evtxdump.py.sh
- Debian
-
apt-get install python-evtx - Ubuntu
-
apt-get install python-evtx - Kali Linux
-
apt-get install python-evtx - Windows (WSL2)
-
sudo apt-get updatesudo apt-get install python-evtx - Raspbian
-
apt-get install python-evtx - Dockerfile
- dockerfile.run/evtxdump.py
python-evtx
parser for recent Windows Event Log files -- Python 2 version
This module provides programmatic access to the File and Chunk headers, record templates, and event entries from Microsoft Windows Vista and later. This package contains modules for Python 2.