dgunter/evtxtoelk external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

dgunter/evtxtoelk

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/dgunter/evtxtoelk)

Close

dgunter / evtxtoelkView on GitHubMore

• External links
• Readme badge

A lightweight tool to load Windows Event Log evtx files into Elasticsearch.

☆119Nov 6, 2020Updated 5 years ago

Alternatives and similar repositories for evtxtoelk

Users that are interested in evtxtoelk are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• williballenthin / python-evtx

  View on GitHub
  Pure Python parser for Windows Event Log files (.evtx)
  ☆771Mar 19, 2026Updated last month
• devgc / EventMonkey

  View on GitHub
  A Windows Event Processing Utility
  ☆47Feb 21, 2018Updated 8 years ago
• dgunter / ParseZeekLogs

  View on GitHub
  Utility for parsing Bro log files into CSV or JSON format
  ☆41Jan 12, 2023Updated 3 years ago
• forensicmatt / RustyReg

  View on GitHub
  Registry to JSON. This Project is for learning purposes and is not maintained.
  ☆12Dec 28, 2021Updated 4 years ago
• msuhanov / regf-samples

  View on GitHub
  Windows registry samples
  ☆24Nov 18, 2018Updated 7 years ago
• Managed hosting for WordPress and PHP on Cloudways • Ad
  Managed hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
• THIBER-ORG / userline

  View on GitHub
  Query and report user logons relations from MS Windows Security Events
  ☆244Aug 9, 2018Updated 7 years ago
• JPCERTCC / SysmonSearch

  View on GitHub
  Investigate suspicious activity by visualizing Sysmon's event log
  ☆432Dec 22, 2023Updated 2 years ago
• sbousseaden / EVTX-ATTACK-SAMPLES

  View on GitHub
  Windows Events Attack Samples
  ☆2,549Jan 24, 2023Updated 3 years ago
• forensiclunch / ETLParser

  View on GitHub
  Binary commandline executable to parse ETL files
  ☆69Jun 7, 2018Updated 7 years ago
• KasperskyLab / ForensicsTools

  View on GitHub
  Tools for DFIR
  ☆123Jan 25, 2018Updated 8 years ago
• jschicht / MftCarver

  View on GitHub
  Carve $MFT records from a chunk of data (for instance a memory dump)
  ☆16Aug 21, 2016Updated 9 years ago
• JPCERTCC / LogonTracer

  View on GitHub
  Investigate malicious Windows logon by visualizing and analyzing Windows event log
  ☆3,156Oct 19, 2025Updated 6 months ago
• CD-R0M / YARA

  View on GitHub
  Hundred Days of Yara Challenge
  ☆12Jun 21, 2022Updated 3 years ago
• CERT-Polska / mquery

  View on GitHub
  YARA malware query accelerator (web frontend)
  ☆437Feb 3, 2026Updated 2 months ago
• 1-Click AI Models by DigitalOcean Gradient • Ad
  Deploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
• bonifield / volatilityGrapher

  View on GitHub
  Force-Directed Graph Generator for Volatility Ouputs
  ☆26Mar 3, 2019Updated 7 years ago
• sumeshi / evtx2es

  View on GitHub
  A fast library for parsing and importing Windows Event Logs into Elasticsearch.
  ☆87Updated this week
• mbevilacqua / appcompatprocessor

  View on GitHub
  "Evolving AppCompat/AmCache data analysis beyond grep"
  ☆208Sep 15, 2021Updated 4 years ago
• jordisk / TheHive2Sigma

  View on GitHub
  Python script to automatically create sigma rules from The hive observables
  ☆25Mar 17, 2019Updated 7 years ago
• ydkhatri / Appx-Analysis

  View on GitHub
  Scripts and tools created for appx analysis talk (Magnet summit 2019)
  ☆19Feb 26, 2024Updated 2 years ago
• yampelo / beagle

  View on GitHub
  Beagle is an incident response and digital forensics tool which transforms security logs and data into graphs.
  ☆1,344Dec 13, 2022Updated 3 years ago
• tsale / Threat-Intelligence-Playbooks

  View on GitHub
  High-level Threat Intelligence playbooks
  ☆21Mar 6, 2021Updated 5 years ago
• vavarachen / evtx2json

  View on GitHub
  A tool to convert Windows evtx files (Windows Event Log Files) into JSON format and log to Splunk (optional) using HTTP Event Collector.
  ☆58Apr 8, 2022Updated 4 years ago
• msuhanov / winmem_decompress

  View on GitHub
  Extract compressed memory pages from page-aligned data
  ☆47Sep 25, 2018Updated 7 years ago
• Deploy open-source AI quickly and easily - Bonus Offer • Ad
  Runpod Hub is built for open source. One-click deployment and autoscaling endpoints without provisioning your own infrastructure.
• williballenthin / wevt_template

  View on GitHub
  extract and parse WEVT_TEMPLATEs from PE files
  ☆18Dec 30, 2023Updated 2 years ago
• ruppde / yara_rules

  View on GitHub
  Yara rules
  ☆22Mar 27, 2023Updated 3 years ago
• JohnLaTwC / PyPowerShellXray

  View on GitHub
  Python script to decode common encoded PowerShell scripts
  ☆217Jun 13, 2018Updated 7 years ago
• williballenthin / process-forest

  View on GitHub
  Reconstruct process trees from event logs
  ☆148Aug 12, 2020Updated 5 years ago
• mass-project / mass_server

  View on GitHub
  Malware Analysis and Storage System - Server repository
  ☆12Jul 15, 2022Updated 3 years ago
• nshalabi / SysmonTools

  View on GitHub
  Utilities for Sysmon
  ☆1,637Apr 4, 2026Updated 2 weeks ago
• grayfold3d / POSH-Triage

  View on GitHub
  Tools for parsing Forensic images
  ☆41Dec 14, 2018Updated 7 years ago
• wagga40 / Zircolite

  View on GitHub
  A standalone SIGMA-based detection tool for EVTX, Auditd and Sysmon for Linux logs
  ☆802Apr 6, 2026Updated last week
• philhagen / sof-elk

  View on GitHub
  Configuration files for the SOF-ELK VM
  ☆1,729Jan 21, 2026Updated 2 months ago
• Managed hosting for WordPress and PHP on Cloudways • Ad
  Managed hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
• theflakes / reg_hunter

  View on GitHub
  Blueteam operational triage registry hunting/forensic tool.
  ☆149Sep 2, 2025Updated 7 months ago
• giMini / NOAH

  View on GitHub
  PowerShell No Agent Hunting
  ☆111Apr 23, 2018Updated 7 years ago
• zerber0s / mac_int

  View on GitHub
  macOS Artifact Intelligence Tool
  ☆13Apr 30, 2019Updated 6 years ago
• DissectMalware / MalwareCMDMonitor

  View on GitHub
  Shows command lines used by latest instances analyzed on Hybrid-Analysis
  ☆43Sep 18, 2018Updated 7 years ago
• MHaggis / sysmon-dfir

  View on GitHub
  Sources, configuration and how to detect evil things utilizing Microsoft Sysmon.
  ☆940Dec 12, 2023Updated 2 years ago
• airbus-cert / regrippy

  View on GitHub
  A modern Python-3-based alternative to RegRipper
  ☆213Mar 31, 2025Updated last year
• libyal / libfwevt

  View on GitHub
  Library for Windows XML Event Log (EVTX) data types
  ☆18Dec 17, 2025Updated 4 months ago