Python bindings for https://github.com/omerbenamram/evtx

Navigation

Verified details

These details have been verified by PyPI
Maintainers
Avatar for OmerBA from gravatar.com OmerBA

Unverified details

These details have not been verified by PyPI
Meta
Report project as malware

Project description

Build Status

pyevtx-rs

Python bindings for https://github.com/omerbenamram/evtx/.

Installation

Available on PyPi - https://pypi.org/project/evtx/.

To install from PyPi - pip install evtx

Wheels

Wheels are currently automatically built for python3.6 python3.7 for all 64-bit platforms (Windows, macOS, and manylinux).

Installation from sources

Installation is possible for other platforms by installing from sources, this requires a nightly rust compiler and setuptools-rust.

Run python setup.py install

Usage

The API surface is currently fairly limited (only yields events as XML/JSON documents), but is planned to be expanded in the future.

This will print each record as an XML string.

from evtx import PyEvtxParser


def main():
    parser = PyEvtxParser("./samples/Security_short_selected.evtx")
    for record in parser.records():
        print(f'Event Record ID: {record["event_record_id"]}')
        print(f'Event Timestamp: {record["timestamp"]}')
        print(record['data'])
        print(f'------------------------------------------')

And this will print each record as a JSON string.

from evtx.parser import PyEvtxParser


def main():
    parser = PyEvtxParser("./samples/Security_short_selected.evtx")
    for record in parser.records_json():
        print(f'Event Record ID: {record["event_record_id"]}')
        print(f'Event Timestamp: {record["timestamp"]}')
        print(record['data'])
        print(f'------------------------------------------')

File-like objects are also supported.

from evtx.parser import PyEvtxParser


def main():
    a = open("./samples/Security_short_selected.evtx", 'rb')
    
    # io.BytesIO is also supported.
    parser = PyEvtxParser(a)
    for record in parser.records_json():
        print(f'Event Record ID: {record["event_record_id"]}')
        print(f'Event Timestamp: {record["timestamp"]}')
        print(record['data'])
        print(f'------------------------------------------')

Project details

Verified details

These details have been verified by PyPI
Maintainers
Avatar for OmerBA from gravatar.com OmerBA

Unverified details

These details have not been verified by PyPI
Meta

Release history Release notifications | RSS feed

0.11.0

0.8.9

0.8.8

0.8.7

0.8.6

0.8.4

0.8.3

0.8.2

0.8.1

0.8.0

0.7.3

0.7.2

0.6.11

This version

0.6.10

0.6.9

0.6.8

0.6.7

0.6.6

0.6.5

0.6.3

0.6.2

0.5.1

0.4.0

0.3.2

0.3.0

0.2.7

0.2.6

0.2.5

Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distributions

No source distribution files available for this release.See tutorial on generating distribution archives.

Built Distributions

If you're not sure about the file name format, learn more about wheel file names.

evtx-0.6.10-cp38-none-win_amd64.whl (691.2 kB view details)

Uploaded CPython 3.8Windows x86-64

evtx-0.6.10-cp38-cp38-manylinux1_x86_64.whl (756.6 kB view details)

Uploaded CPython 3.8

evtx-0.6.10-cp38-cp38-macosx_10_7_x86_64.whl (689.2 kB view details)

Uploaded CPython 3.8macOS 10.7+ x86-64

evtx-0.6.10-cp37-none-win_amd64.whl (691.2 kB view details)

Uploaded CPython 3.7Windows x86-64

evtx-0.6.10-cp37-cp37m-manylinux1_x86_64.whl (756.6 kB view details)

Uploaded CPython 3.7m

evtx-0.6.10-cp37-cp37m-macosx_10_7_x86_64.whl (689.2 kB view details)

Uploaded CPython 3.7mmacOS 10.7+ x86-64

evtx-0.6.10-cp36-none-win_amd64.whl (691.7 kB view details)

Uploaded CPython 3.6Windows x86-64

evtx-0.6.10-cp36-cp36m-manylinux1_x86_64.whl (756.9 kB view details)

Uploaded CPython 3.6m

evtx-0.6.10-cp36-cp36m-macosx_10_7_x86_64.whl (689.5 kB view details)

Uploaded CPython 3.6mmacOS 10.7+ x86-64

evtx-0.6.10-cp35-none-win_amd64.whl (691.4 kB view details)

Uploaded CPython 3.5Windows x86-64

evtx-0.6.10-cp35-cp35m-manylinux1_x86_64.whl (756.7 kB view details)

Uploaded CPython 3.5m

evtx-0.6.10-cp35-cp35m-macosx_10_7_x86_64.whl (688.7 kB view details)

Uploaded CPython 3.5mmacOS 10.7+ x86-64

File details

Details for the file evtx-0.6.10-cp38-none-win_amd64.whl.

File metadata

  • Download URL: evtx-0.6.10-cp38-none-win_amd64.whl
  • Upload date:
  • Size: 691.2 kB
  • Tags: CPython 3.8, Windows x86-64
  • Uploaded using Trusted Publishing? No
  • Uploaded via: maturin/0.8.2

File hashes

Hashes for evtx-0.6.10-cp38-none-win_amd64.whl
Algorithm Hash digest
SHA256 b1d90d7769e00411c0aaa15d351be66cf13ba21e5014c91b40d86543733ad2ee
MD5 81528373a8bfe2749f291dcba068cadf
BLAKE2b-256 effd64303428e972331915a4856ecc31f706800004dde4f3754912cd080e99b2

See more details on using hashes here.

File details

Details for the file evtx-0.6.10-cp38-cp38-manylinux1_x86_64.whl.

File metadata

File hashes

Hashes for evtx-0.6.10-cp38-cp38-manylinux1_x86_64.whl
Algorithm Hash digest
SHA256 0d418ecce754e47ed6a178d91a58e9d033ea14a084a48708fe64c34859416ec4
MD5 defaa2053f80a671c515993c61b63b9b
BLAKE2b-256 6024ac610d3a624825697895a9c5dcbb4a06adb73b94ee5efcc25e583531e043

See more details on using hashes here.

File details

Details for the file evtx-0.6.10-cp38-cp38-macosx_10_7_x86_64.whl.

File metadata

File hashes

Hashes for evtx-0.6.10-cp38-cp38-macosx_10_7_x86_64.whl
Algorithm Hash digest
SHA256 bc65b208d464eb06d9e862e24f67b702b80c86fc5559b670f116fcaef235575d
MD5 b6d3d163bdc2b265536ea5edb4ff228e
BLAKE2b-256 956a3c6d6b0006ae0a7d485c37a538695436e28192d3f4ab4d5716c0ba7871ad

See more details on using hashes here.

File details

Details for the file evtx-0.6.10-cp37-none-win_amd64.whl.

File metadata

  • Download URL: evtx-0.6.10-cp37-none-win_amd64.whl
  • Upload date:
  • Size: 691.2 kB
  • Tags: CPython 3.7, Windows x86-64
  • Uploaded using Trusted Publishing? No
  • Uploaded via: maturin/0.8.2

File hashes

Hashes for evtx-0.6.10-cp37-none-win_amd64.whl
Algorithm Hash digest
SHA256 7e45d68ade43c6d9e5a2d4f7b72305775a81710e5508d89d007d5595d2f5c747
MD5 2a21da4886ae40565980c27c6bacc105
BLAKE2b-256 4ae426f13cd65b590b5a1bf44ff13ad2b378b03a4086c58a92f95843d8f7ab2b

See more details on using hashes here.

File details

Details for the file evtx-0.6.10-cp37-cp37m-manylinux1_x86_64.whl.

File metadata

File hashes

Hashes for evtx-0.6.10-cp37-cp37m-manylinux1_x86_64.whl
Algorithm Hash digest
SHA256 95a5f8562a85a5f9d72425b5f73ba90009d6a795aea73421b270be0290feaceb
MD5 61a4792f35eb24527839d2289b9f9e15
BLAKE2b-256 9e97f488e74dcc601134360362b6e09fad569a69af6261459ef8563417413fc9

See more details on using hashes here.

File details

Details for the file evtx-0.6.10-cp37-cp37m-macosx_10_7_x86_64.whl.

File metadata

File hashes

Hashes for evtx-0.6.10-cp37-cp37m-macosx_10_7_x86_64.whl
Algorithm Hash digest
SHA256 5943d7bb71f5d61a45dd94d253f6529f92d477d42060018567c3332bdc89760b
MD5 b6d7f8ea27bb116361ce856badf3fa2a
BLAKE2b-256 cee361835414a8f4927fa7689b2209c87645b8dc9e93f7bbaef72ea366d10b30

See more details on using hashes here.

File details

Details for the file evtx-0.6.10-cp36-none-win_amd64.whl.

File metadata

  • Download URL: evtx-0.6.10-cp36-none-win_amd64.whl
  • Upload date:
  • Size: 691.7 kB
  • Tags: CPython 3.6, Windows x86-64
  • Uploaded using Trusted Publishing? No
  • Uploaded via: maturin/0.8.2

File hashes

Hashes for evtx-0.6.10-cp36-none-win_amd64.whl
Algorithm Hash digest
SHA256 a8fbc8e9e99010239be12973b7e90645d352886c8a20f3a6225aa63760388659
MD5 a3dde8711c73c2ec2bda68674d684e7b
BLAKE2b-256 b0aa33f910b94fa01a6e253e19b59a8b78653ba605bb5de0f9e2815c4cea29d9

See more details on using hashes here.

File details

Details for the file evtx-0.6.10-cp36-cp36m-manylinux1_x86_64.whl.

File metadata

File hashes

Hashes for evtx-0.6.10-cp36-cp36m-manylinux1_x86_64.whl
Algorithm Hash digest
SHA256 8a2c67c1b93d607cbe46ae18ff7a4cd801f90267134f0b608e11843c3fa3c6f0
MD5 6d79c7fb4add41dc3c382c4975864e7d
BLAKE2b-256 6110ec7e95373c45761fc47208b610622db3bd8683c3e80af6413ba32639bb37

See more details on using hashes here.

File details

Details for the file evtx-0.6.10-cp36-cp36m-macosx_10_7_x86_64.whl.

File metadata

File hashes

Hashes for evtx-0.6.10-cp36-cp36m-macosx_10_7_x86_64.whl
Algorithm Hash digest
SHA256 98c17da01c063cdacdcd1e67d979c1823c3c4a952776d2544d59746ef3ea00c1
MD5 d935bab3860f390d811afc26dd3f2667
BLAKE2b-256 c00ee673659d8a94d003e290b899c34815db3a969686d8402e33e1e1767fda78

See more details on using hashes here.

File details

Details for the file evtx-0.6.10-cp35-none-win_amd64.whl.

File metadata

  • Download URL: evtx-0.6.10-cp35-none-win_amd64.whl
  • Upload date:
  • Size: 691.4 kB
  • Tags: CPython 3.5, Windows x86-64
  • Uploaded using Trusted Publishing? No
  • Uploaded via: maturin/0.8.2

File hashes

Hashes for evtx-0.6.10-cp35-none-win_amd64.whl
Algorithm Hash digest
SHA256 756c682f5d86916e529fe95dda467ebd9cdd17df365a36b2f2032bc8801c619e
MD5 e394e29bf847898f52bc055e1ef27576
BLAKE2b-256 bd17a524d5528f9faf2a8b6369087f17b9b47b8c6fa1cc9ac9838e2bf847c468

See more details on using hashes here.

File details

Details for the file evtx-0.6.10-cp35-cp35m-manylinux1_x86_64.whl.

File metadata

File hashes

Hashes for evtx-0.6.10-cp35-cp35m-manylinux1_x86_64.whl
Algorithm Hash digest
SHA256 775017ae67579040760dadf78458b8486942acf2256aa9780adef4d5511a1e50
MD5 a5e9f85e1b40a2b6004fb7117f0a6643
BLAKE2b-256 06a1d4630854724692f15319e215f16d43ab53fba5a46f327d79a4f8d5f4592c

See more details on using hashes here.

File details

Details for the file evtx-0.6.10-cp35-cp35m-macosx_10_7_x86_64.whl.

File metadata

File hashes

Hashes for evtx-0.6.10-cp35-cp35m-macosx_10_7_x86_64.whl
Algorithm Hash digest
SHA256 feca2e1e34348331540346dd3ed3675ac9dd27a4126a9ff44cc9cd1258b81c23
MD5 2e8f2d91ca15221c996708afd9eac6c0
BLAKE2b-256 85959919f6831a7f215abea90601c77a8ddca0549975b4c6bf86c3e43a5d4566

See more details on using hashes here.

Supported by

AWS Cloud computing and Security Sponsor Datadog Monitoring Depot Continuous Integration Fastly CDN Google Download Analytics Pingdom Monitoring Sentry Error logging StatusPage Status page