Skip to content

Releases: 0xrawsec/golang-evtx

Library v1.2.4 & Tools

10 Jul 07:03
@qjerome qjerome
v1.2.4
fb1efdb
Compare
Choose a tag to compare
Library v1.2.4 & Tools Latest
Latest

Fixes:

Assets 6
Loading

Library v1.2.3 & Tools

28 Sep 09:49
@qjerome qjerome
v1.2.3
15c1970
Compare
Choose a tag to compare
Library v1.2.3 & Tools
  • Real fix for issue #16
  • Fix for issue #17
Assets 8
Loading

Library & Tools Version 1.2.1

20 May 06:07
@qjerome qjerome
v1.2.1
79e88ac
Compare
Choose a tag to compare
Library & Tools Version 1.2.1

Fix issue #12

Assets 6
Loading

Library & Tools Version 1.2.0

21 Mar 21:28
@qjerome qjerome
v1.2.0
69fdb30
Compare
Choose a tag to compare
Library & Tools Version 1.2.0
  • Support for several forwarding in evtxdump
    • Kafka
    • HTTP
    • TCP
  • Support for go1.12 modules
Assets 2
Loading

Library & Tools Version 1.1.0

28 Nov 08:38
@qjerome qjerome
v1.1.0
69fdb30
Compare
Choose a tag to compare
Library & Tools Version 1.1.0

Description

Fixed Version 1.1 of the following tools:

  • evtxdump: utility to dump evtx files
  • evtxmon: utility to monitor evtx files and dump events as soon as they appears in the monitored EVTX file

Changes

  • Fixed uint16 overflow in chunk parsing, evtxdump is now able to parse files with 65535 chunks.
  • Fixed uint16 overflow in MonitorEvents
  • Ability to retrieve already existing events in MonitorEvents via SetMonitorExisting method of EvtxFile object
  • evtxmon able to retrieve already existing events via -e switch
  • Compresses the output when written into a file using evtxmon
  • evtxdump can display stats with the -s switch
  • The Channel attribute of an event is now accessible through a Channel() function of GoEvtxMap
Assets 8
Loading