grokevt 0.5.0-ok1 (amd64 binary) in openkylin yangtze
GrokEVT is a collection of scripts built for reading Microsoft Windows
NT/2000/XP/2003 event log files.
.
Currently the scripts work together on one or more mounted Microsoft Windows
partitions to extract all information needed (registry entries, message
templates, and log files) to convert the logs to a human-readable format.
.
This program is useful in forensics investigations.
Details
- Package version:
- 0.5.0-ok1
- Status:
- Deleted
- Component:
- main
- Priority:
- Optional
Downloadable files
amd64 build of grokevt 0.5.0-ok1 in openkylin yangtze PROPOSED produced
these files:
- grokevt_0.5.0-ok1_all.deb (33.2 KiB)
Package relationships
- Depends on:
