search

omerbenamram / evtx

A Fast (and safe) parser for the Windows XML Event Log (EVTX) format
Apache License 2.0
652 stars 62 forks source link

Fix #10 #11

Closed omerbenamram closed 5 years ago

omerbenamram commented 5 years ago

There was a range error which caused skipping a block. But I've also noticed that the file is marked dirty, and has 182 chunks and not 180 as listed in the header.

Fixes #10

ohadravid commented 5 years ago

Probably should call 2-system-Security.evtx something like 2-system-Security-dirty.evtx