-
Hi,
I'm using python to pull event logs from remote machine using ms-even6 interface (https://msdn.microsoft.com/en-us/library/cc231282.aspx).
I used EvtRpcRegisterLogQuery and EvtRpcQueryNext fu…
-
I get the error :
Failed to dump the next record.
Caused by:
0: Failed to parse record number 341
1: An error occurred while trying to serialize binary xml to output.
2: Building a …
-
Wondered if there were plans to read EVTX logs?
These are binary xml logs used by Windows. The logs themselves can be converted to XML (and then to JSON for example), however there is heavy use of …
-
In a [recent discussion](https://twitter.com/DavidPany/status/1266779174901071872), it became clear to me that there's a desire for evtx tooling that supports an offline database of templates. Here's …
-
Hi,
When attempting to parse an evtx file as gathered by a collector on a Win server 2012 R2 box ; I get the following errors:
```
./evtx_dump.py Archive-ForwardedEvents-2017-07-19-09-54-122.e…
-
I'm confused by the three available sources of EventSource, and unsure which one is the correct one to use.
The Microsoft.Diagnostics.Tracing.EventSource package has not been updated since 2015. Ho…
-
Hi, I was trying to parse a file and run into an invalid character
The sample was taken from a Microsoft-Windows-DriverFrameworks-UserMode%4Operational.evtx
The XML looks more or less like this:…
-
### Is there an existing issue for this?
- [X] I have searched the existing issues
### Describe the bug
We are observing an intermittent issue in a local development environment (using IIS Express)…
-
Been trying to look around to see if any there are any resources/tools/information in regards to extract the various graphics types used in Metal Gear Arcade until the AFP file format but have yielded…
-
Hi,
We are trying to use your library to parse Windows logs but we encountered some strange error when parsing EVTX files coming from a Windows Event Collector server.
In the event viewer, the XM…