Velocidex/evtx Velocidex/evtx

  • Stars
    star
    92
  • Rank 353,604 (Top 8 %)
  • Language
    Go
  • License
    Apache License 2.0
  • Created over 5 years ago
  • Updated over 1 year ago
Twitter logo Share LinkedIn logo Share Facebook logo Share
Velocidex/evtx
github

Velocidex

Reviews

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

Repository Details

Golang Parser for Microsoft Event Logs

More Repositories

1

velociraptor

Digging Deeper....
Go
2,595
star
2

WinPmem

The multi-platform memory acquisition tool.
C
576
star
3

c-aff4

An AFF4 C++ implementation.
C++
182
star
4

go-ntfs

An NTFS file parser in Go
Go
61
star
5

Linpmem

Linpmem is a linux memory acquisition tool
C
53
star
6

go-pe

A Portable Executable parser for Golang
Go
45
star
7

oleparse

Golang parser for OLE files
Go
30
star
8

velociraptor-docs

Documentation site for Velociraptor
HTML
30
star
9

evtx-data

Publicly shareable windows event log message data
25
star
10

go-ese

Go implementation of an Extensible Storage Engine parser
Go
25
star
11

go-prefetch

A golang implementation of a prefetch parser.
Go
18
star
12

vfilter

A library implementing a generic SQL like query language.
Go
18
star
13

cloudvelo

An experimental Velociraptor implementation using cloud infrastructure
Go
17
star
14

pyvelociraptor

PyVelociraptor contains the python bindings for the Velociraptor API.
Python
12
star
15

vtypes

VTypes is a data driven binary parsing system in Go.
Go
10
star
16

regparser

A Golang Registry parser
Go
10
star
17

eql2vql

Transform EQL detection rules to VQL artifacts
Python
9
star
18

Tools

Distribute third party tools for use with Velociraptor
8
star
19

SQLiteHunter

Hunt for SQLite files used by various applications
Go
7
star
20

yara-tools

Tools to manipulate yara files.
Go
5
star
21

binparsergen

Binary Parser Generator for Go
Go
5
star
22

ordereddict

A simple Ordered Dict implementation.
Go
4
star
23

velociraptor-sigma-rules

A Compiler from Sigma rules to VQL
Go
4
star
24

go-magic

Go bindings for libmagic
C
3
star
25

go-fat

Parser for FAT filesystems
Go
2
star
26

go-ewf

A Library for reading EWF files
Go
2
star
27

Audit

Collection of Audit and Compliance related VQL artifacts
Go
2
star
28

velociraptor-web

Velociraptor's documentation site.
CSS
2
star
29

zip

Enhanced zip library
Go
2
star
30

presentations

Presentations and Workshops
HTML
2
star
31

injector

A simple tool for testing memory based detection
Go
1
star
32

registry_hunter

Hunt the windows Registry automatically using VQL
Rebol
1
star
33

json

A fork of golang's encoding/json with options.
Go
1
star