issues
search
EricZimmerman
/
evtx
C# based evtx parser with lots of extras
MIT License
280
stars
59
forks
source link
issues
Newest
Newest
Most commented
Recently updated
Oldest
Least commented
Least recently updated
Added a lookup for firewall rules direction
#191
forensenellanebbia
closed
2 years ago
0
Add new Splashtop Maps, update old Splashtop Maps
#190
AndrewRathbun
closed
2 years ago
0
suggested change as file name != executable name
#189
randomaccess3
closed
2 years ago
0
Create Application_Microsoft-Windows-Winsrv_10001.map
#188
RandyRandleman
closed
2 years ago
0
Moved 5 files to Maps folder
#187
dfirdetective
closed
2 years ago
0
Update Security_Microsoft-Windows-Security-Auditing_4688.map
#186
esecrpm
closed
2 years ago
1
update Regex for Application 1040 and 1042
#185
AndrewRathbun
closed
2 years ago
0
Update !Channel-Name_Provider-Name_EventID.guide
#184
AndrewRathbun
closed
2 years ago
0
Create System_Microsoft-Windows-GroupPolicy_1130.map
#183
HSICFA
closed
2 years ago
1
Create Application_Symantec_4003.map
#182
HSICFA
closed
2 years ago
0
Group similar event in the same second
#181
Tapiocapioca
closed
2 years ago
4
Jball77/515 x
#180
jball77-git
closed
2 years ago
1
'Process Id' property not properly populated or configurable
#179
jball77-git
closed
2 years ago
3
Added Application_MsiInstaller_1040 and 1042
#178
AndrewRathbun
closed
2 years ago
0
Create Microsoft-Windows-SmbClient-Security_Microsoft-Windows-SMBClie…
#177
CluelessAtCoding
closed
2 years ago
1
Update Microsoft-Windows-Partition-Diagnostic_Microsoft-Windows-Parti…
#176
chadtilbury
closed
2 years ago
0
Add .NET 6 support
#175
Eran-YT
closed
2 years ago
0
BITS 64
#174
RandyRandleman
closed
3 years ago
4
Update Security_Microsoft-Windows-Security-Auditing_4625.map
#173
AndrewRathbun
closed
3 years ago
1
Update Security_Microsoft-Windows-Security-Auditing_4688.map
#172
AndrewRathbun
closed
3 years ago
0
Update Sysmon events with User fields
#171
AndrewRathbun
closed
3 years ago
1
Create Security_Microsoft-Windows-Security-Auditing_4743.map
#170
AndrewRathbun
closed
3 years ago
0
5 maps for submission
#169
PJSnyder
closed
3 years ago
1
Add CbDefense Maps
#168
AndrewRathbun
closed
3 years ago
0
Update documentation
#167
AndrewRathbun
closed
3 years ago
0
Fix 551 Map for SMB
#166
AndrewRathbun
closed
3 years ago
0
Create Security_Microsoft-Windows-Security-Auditing_4728.map
#165
CluelessAtCoding
closed
3 years ago
3
Update Bits:3 Map
#164
AndrewRathbun
closed
3 years ago
0
Update Security_Microsoft-Windows-Security-Auditing_4776.map
#163
AndrewRathbun
closed
3 years ago
1
Create Security_Microsoft-Windows-Security-Auditing_4797.map
#162
AndrewRathbun
closed
3 years ago
0
Sentinel One
#161
RandyRandleman
closed
3 years ago
0
S1
#160
RandyRandleman
closed
3 years ago
0
Update README.md
#159
AndrewRathbun
closed
3 years ago
0
New Cisco AnyConnect/DHCP, updated PrintService maps
#158
esecrpm
closed
3 years ago
1
Modified Firewall Event Log
#157
RandyRandleman
closed
3 years ago
1
Create System_TermDD_56.map
#156
RandyRandleman
closed
3 years ago
0
Update PrintService_307.map
#155
esecrpm
closed
3 years ago
0
Create Microsoft-Windows-PrintService-Operational_Microsoft-Windows-P…
#154
AndrewRathbun
closed
3 years ago
0
Update Security_Microsoft-Windows-Security-Auditing_4701.map
#153
AndrewRathbun
closed
3 years ago
1
Update PULL_REQUEST_TEMPLATE.md
#152
AndrewRathbun
closed
3 years ago
0
Update Microsoft-Windows-PowerShell-Operational_Microsoft-Windows-PowerShell_4100.map
#151
AndrewRathbun
closed
3 years ago
0
Add Maps for DCOM:10028, PowerShell:4100, and SMBClient\Connectivity:30807
#150
AndrewRathbun
closed
3 years ago
0
splashtop
#149
randomaccess3
closed
3 years ago
2
Create Application_CarbonBlackDefense_17.map
#148
RandyRandleman
closed
3 years ago
0
Remove trailing spaces
#147
AndrewRathbun
closed
3 years ago
0
Add new SMBServer Maps
#146
AndrewRathbun
closed
3 years ago
0
Use standard .NET libraries instead of windows only libraries
#145
Eran-YT
closed
3 years ago
3
Minor Map Description fixes
#144
AndrewRathbun
closed
3 years ago
0
Add Reason Codes to TS-LSM:40 Map
#143
AndrewRathbun
closed
3 years ago
0
Create Microsoft-Windows-TerminalServices-Gateway-Operational_Microso…
#142
AndrewRathbun
closed
3 years ago
0
Previous
Next