Pure Python parser for recent Windows event log files (.evtx).
Project description
python-evtx is a pure Python parser for Windows Event Log files (those with the file extension “.evtx”). The module provides programmatic access to the File and Chunk headers, record templates, and event entries. For example, you can use python-evtx to review the event logs of Windows 7 systems from a Mac or Linux workstation. The structure definitions and parsing strategies were heavily inspired by the work of Andreas Schuster and his Perl implementation “Parse-Evtx”.
Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
| Filename, size | File type | Python version | Upload date | Hashes |
|---|---|---|---|---|
| Filename, size python_evtx-0.6.1-py2-none-any.whl (31.9 kB) | File type Wheel | Python version py2 | Upload date | Hashes View |
| Filename, size python_evtx-0.6.1-py3-none-any.whl (31.9 kB) | File type Wheel | Python version py3 | Upload date | Hashes View |
| Filename, size python-evtx-0.6.1.zip (32.1 kB) | File type Source | Python version None | Upload date | Hashes View |
Close
Hashes for python_evtx-0.6.1-py2-none-any.whl
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 | c778e5aebc1032e85183abbdcde0efd775f6a253de73b89c3b18c223c6003664 |
|
| MD5 | 813b55258363ffad207235a5d45b0c28 |
|
| BLAKE2-256 | 2cba30e6051c791c3494e43cf8ef73df034d22bd53072a7bcfac379d16bcd9dd |
Close
Hashes for python_evtx-0.6.1-py3-none-any.whl
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 | ecce8ed84cd0206d7d074c295932b0de1873adf14ec06cc41150902e4717c3d1 |
|
| MD5 | 4daf87677a40555a02948285e4b3789e |
|
| BLAKE2-256 | 3dd5063da3356f0358b4c6d15be6485a36be69447e90bf8056a6c7d2327b6d07 |