applications/forensics tools

grokevt - Read and process Windows Event Files

Website: http://projects.sentinelchicken.org/grokevt/
License: GPL
Vendor: cert.org
Description:
GrokEVT is a collection of scripts built for reading Windows NT event
log files. GrokEVT is released under the GNU GPL, and is implemented
in Python. GrokEVT is loosely based on the PHP script and documentation
provided by Jamie French.

Currently the scripts work together on one or more mounted Windows
partitions to extract all information needed (registry entries, message
templates, and log files) to convert the logs to a human-readable format.

Packages

grokevt-0.5.0-2.fc27.x86_64 [56 KiB] Changelog by Lawrence Rogers (2011-06-22):
* Release 0.5.0-2
	Man pages incorrectly formatted

Listing created by Repoview-0.6.6-4.el7