-
The bug appears to be related to duplicate keys within the map files used by EvtxECmd. Specifically, you are encountering errors when EvtxECmd tries to load the following map files:
Microsoft-Windo…
-
I was able to get a 11.5% speed increase with PGO optimization. (Memory usage did not change)
```
cargo install cargo-pgo
rustup component add llvm-tools-preview
cargo pgo build
cargo pgo instrum…
-
Hello !
When I try to use the python version I have an error :
ImportError: cannot import name 'PyEvtxParser' from 'evtx' (C:\Program Files\Python311\Lib\site-packages\evtx\__init__.py)
I tri…
-
Could you share the information about the scenarios and tools you used to generate these data, please? Or, you can share the full logs of one of these techniques?
I am trying to simulate real data to…
-
Windows security and system logs are processed as .evtx and I believe they are binary XML. These files contain a lot of information about what the system and the processes within are doing. A popula…
-
While working with golang-evtx as a library I was faced with a panic:
```
panic: interface conversion: evtx.Element is *evtx.BinXMLEOF, not *evtx.Fragment
goroutine 824 [running]:
github.com/0xr…
phaag updated
6 years ago
-
Hello,
it's impossible to import from evtx.parser.....why please ? how to use this one for json strings ? please
-
What is the optimal way to ingest offline copies of extracted Windows Event Logs (evtx files) into SOF-ELK?
I love working in SOF-ELK, but I find myself in the situation over and over again, where …
-
Hello,
running logon tracer within docker following the wiki instructions, no problem to get it up and running on port 8080
i upload the security dc log EVTX format and all the upload is go fine.
w…
-
Creates tests for EVTX parser