-
I promptly installed all packages and clone the logontracer, and I tried to upload evtx files and success.
However I cannot see any graph at all. here is a log.
[root@logtracer-dc LogonTracer]# p…
-
I saw recent changes to the compound for RECmd to update the .reb files every time (having a sync module in the first place in the compound, see https://github.com/EricZimmerman/KapeFiles/commit/d99b7…
-
検知部分各所で正規表現のインスタンスを毎回作成して検知処理を行っているが、
速度の低下を招くため、初期設定として行うように修正する
-
Port `System.Diagnostics.Eventing` to Linux & Mac -- for Windows Event Log parsing purposes. I created a [SO post here](https://stackoverflow.com/questions/46915998/eventing-namespace-does-not-exist-i…
-
When I try to add a shortcut to remap using the KeyboardManager, PowerToys crashes.
## How to reproduce
1. Open PowerToys (doesn't matter if you run as administrator)
2. Go to the Keyboard Mana…
-
**summary:** parse_evtx does not create a Message column when parsing `C:\Windows\System32\winevt\Logs\Windows PowerShell.evtx`
**environment:**
- Microsoft Windows [Version 10.0.19041.572]
- v…
-
* Operating System Version: 20H2 19042.1110
* Deploying via (VirtualBox/VMWare/AWS/Azure/ESXi): ESXi
* Vagrant Version (if applicable):
### Description of the issue:
While using WSL2 and buildi…
-
Build `evtxdump` with the following:
```bash
go build -race tools/evtxdump/...
```
Then attempt to dump any EVTX with `./evtxdump $EVTX_FILE`
```bash
==================
==================
…
-
In real life, EventLog.GetEventsLog() is far away from being ready to use in order to acces local (or remote) computer events in a way similar to Event Viewer. If you try to use the provided sample co…
-
add requirements.txt file with dependencies, at least pyeti and python-evtx