evtkit is a Python tool, which can help a computer forensic examiner to fix acquired Windows Event Log files. It’s lightweight, has no external dependencies and available for free at yarox24’s GitHub.

Load More Related Articles
  • FSEParser v 2.1 released

    New version of FSEventsParser has been released. FSEvents files are written to disk by OS …
  • Volatility Workbench Beta

    PassMark Software has released a beta version of Volatility Workbench – a graphical …
  • Mac FS Events Parser for Autopsy

    Mark McKinnon has written a plugin that will export the /.fseventsd directory to the temp …
Load More In Software

Leave a Reply

Your email address will not be published. Required fields are marked *