Parses a lot of evtx files and prints a bodyfile
# convert to bodyfile only
evtx2bodyfile Security.evtx >Security.bodyfile
# create a complete timeline
evtx2bodyfile *.evtx | mactime2 -d -b >evtx_timeline.csv-
Notifications
You must be signed in to change notification settings - Fork 1
Parses a lot of evtx files and prints a bodyfile
License
janstarke/evtx2bodyfile
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Folders and files
| Name | Name | Last commit message | Last commit date | |
|---|---|---|---|---|
Repository files navigation
About
Parses a lot of evtx files and prints a bodyfile
Resources
License
Stars
Watchers
Forks
Packages 0
No packages published