Skip to content
/ evtxtologstash Public

Reads Windows Event Log files and outputs them as json towards Logstash for further processing

0 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

stevengoossensB/evtxtologstash

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

10 Commits
Dockerfile
Dockerfile
 
 
EvtxToLogstash.py
EvtxToLogstash.py
 
 
README.md
README.md
 
 

Repository files navigation

evtxtologstash

Reads Windows Event Log files and outputs them as json towards Logstash for further processing

Installation

Requires Python3 to run the Python file and the below libraries

pip3 install python-evtx xmltodict python-logstash

As a container

docker run --rm -it -v <path_to_evtx_file>:logs.evtx stevengoossens/evtxtologstash bash -c 'python EvtxToLogstash.py logs.evtx <logstash_host> <logstash_port>'

About

Reads Windows Event Log files and outputs them as json towards Logstash for further processing

Resources

Readme
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages