Library and tools to access the Windows XML Event Log (EVTX) format
☆229Dec 15, 2025Updated 2 months ago
Alternatives and similar repositories for libevtx
Users that are interested in libevtx are comparing it to the libraries listed below
Sorting:
- Library for Windows XML Event Log (EVTX) data types☆18Dec 17, 2025Updated 2 months ago
- Library and tools to access the Windows Event Log (EVT) format☆60Dec 15, 2025Updated 2 months ago
- Parse evtx files and detect use of the DanderSpritz eventlogedit module☆151Dec 15, 2017Updated 8 years ago
- ☆170Nov 11, 2022Updated 3 years ago
- A Fast (and safe) parser for the Windows XML Event Log (EVTX) format☆883Feb 6, 2026Updated 3 weeks ago
- Pure Python parser for Windows Event Log files (.evtx)☆765Jun 18, 2025Updated 8 months ago
- Remove individual lines from Windows XML Event Log (EVTX) files☆272Apr 17, 2021Updated 4 years ago
- Golang Parser for Microsoft Event Logs☆105Nov 7, 2025Updated 3 months ago
- Yet another library library (and tools)☆217Dec 21, 2025Updated 2 months ago
- ReviveIT (revit) is a proof of concept file recovery tool (carver)☆13Dec 3, 2020Updated 5 years ago
- Library and tools to access the Microsoft Internet Explorer (MSIE) Cache File (index.dat) files☆17Dec 19, 2025Updated 2 months ago
- Packer for PE and ELF, 32 and 64bits.☆22Aug 5, 2013Updated 12 years ago
- recovers and reconstructs fragmented Evtx files from disk images, memory dumps, pagefiles and unallocated space☆13Feb 3, 2015Updated 11 years ago
- Library and tools to access the Windows SuperFetch database format☆13Nov 29, 2025Updated 3 months ago
- Library and tools to access the Windows NT Registry File (REGF) format☆132Dec 19, 2025Updated 2 months ago
- Digital Forensics Virtual File System (dfVFS)☆217Feb 15, 2026Updated last week
- Library and tools to access the Windows New Technology File System (NTFS)☆225Feb 8, 2026Updated 2 weeks ago
- Library and tools to access the Volume Shadow Snapshot (VSS) format☆113Dec 20, 2025Updated 2 months ago
- Library and tools to access the Windows Prefetch File (SCCA) format.☆83Dec 19, 2025Updated 2 months ago
- EVTXtract recovers and reconstructs fragments of EVTX log files from raw binary data, including unallocated space and memory images.☆208Mar 12, 2025Updated 11 months ago
- ☆15Mar 28, 2015Updated 10 years ago
- Makes drivers less sucky to manage from usermode.☆11Aug 5, 2016Updated 9 years ago
- Another Remote Access Control software, written in Golang. It heavily relies on cryptography to avoid threat of botnet use/abuse by other…☆11Jan 12, 2017Updated 9 years ago
- ☆432May 3, 2023Updated 2 years ago
- a program to detect reflective dll injection on a live machine☆76Dec 12, 2015Updated 10 years ago
- Use TpAllocWork, TpPostWork and TpReleaseWork to execute machine code☆24Mar 13, 2023Updated 2 years ago
- Commandline low level file extractor for NTFS☆307Jul 30, 2019Updated 6 years ago
- ☆96Dec 24, 2014Updated 11 years ago
- Windows Events Attack Samples☆2,515Jan 24, 2023Updated 3 years ago
- ☆18Dec 24, 2018Updated 7 years ago
- windows rpc 使用MIDL+RPC实现HelloWorld☆23Mar 21, 2018Updated 7 years ago
- RDP Bitmap Cache parser☆631Jan 21, 2025Updated last year
- PE rebuilder, based on yoda's realigndll☆12Oct 1, 2011Updated 14 years ago
- The old integrity check bypass made by dude719.☆13Apr 2, 2016Updated 9 years ago
- Monitor adapter, Fake DNS, Tunnel, and DHCP combined into one Windows Service☆12Apr 19, 2015Updated 10 years ago
- an efficient yet easy to use network packet builder and parser☆11Jul 3, 2017Updated 8 years ago
- RunPE dump - I wrote this to have better control over the analysis of malwares. I can stop and analysis malware when it uses some of the …☆10Jul 1, 2015Updated 10 years ago
- Windows aero overlay with Direct2D & DirectWrite support☆11May 1, 2016Updated 9 years ago
- C++ library for detecting Visual C++ runtimes on Windows XP and later.☆18Jul 7, 2014Updated 11 years ago