Bug#467357: ITP: grokevt -- scripts for reading Microsoft Windows event log files
David Paleino
d.paleino at gmail.com
Sun Feb 24 21:36:12 UTC 2008
Package: wnpp
Severity: wishlist
Owner: Debian Forensics <forensics-devel at lists.alioth.debian.org>
* Package name : grokevt
Version : 0.4.0
Upstream Author : Timothy D. Morgan
* URL : http://projects.sentinelchicken.org/grokevt/
* License : GPL-2+
Programming Lang: Python
Description : scripts for reading Microsoft Windows event log files
GrokEVT is a collection of scripts built for reading Microsoft Windows
NT/2000/XP/2003 event log files.
.
Currently the scripts work together on one or more mounted Microsoft
Windows partitions to extract all information needed (registry entries,
message templates, and log files) to convert the logs to a human-readable
format.
--
. ''`. Debian maintainer | http://wiki.debian.org/DavidPaleino
: :' : Linuxer #334216 --|-- http://www.hanskalabs.net/
`. `'` GPG: 1392B174 ----|---- http://snipr.com/qa_page
`- 2BAB C625 4E66 E7B8 450A C3E1 E6AA 9017 1392 B174
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 189 bytes
Desc: not available
Url : http://lists.alioth.debian.org/pipermail/forensics-devel/attachments/20080224/fa71c730/attachment-0003.pgp
More information about the forensics-devel
mailing list