evtx


Nameevtx JSON
Version 0.8.8 PyPI version JSON
download
home_pageNone
SummaryPython bindings for https://github.com/omerbenamram/evtx
upload_time2024-11-23 17:44:19
maintainerNone
docs_urlNone
authorOmer Ben-Amram <omerbenamram@gmail.com>
requires_python>=3.7
licenseMIT/Apache-2.0
keywords
VCS
bugtrack_url
requirements No requirements were recorded.
Travis-CI No Travis.
coveralls test coverage No coveralls.
            <div align="center">
  <!-- Downloads -->
  <a href="https://pypi.org/project/evtx/">
    <img src="https://pepy.tech/badge/evtx"
      alt="Download" />
  </a>
</div>


# pyevtx-rs

Python bindings for `https://github.com/omerbenamram/evtx/`.

## Installation

Available on PyPi - https://pypi.org/project/evtx/.

To install from PyPi - `pip install evtx`

### Wheels

Wheels are currently automatically built for Python 3.7+ using abi3 tag (which means they are compatible with all version from 3.7 onwards).

Supported platforms are:
  - Linux x86_64
  - macOS x86_64
  - macOS arm64 (m1)
  - Windows x86_64

### Installation from sources

Installation is possible for other platforms by installing from sources.

This requires a Rust compiler and a recent enough Setuptools and Pip.

Run `pip install -e .`

## Usage

The API surface is currently fairly limited (only yields events as XML/JSON documents), but is planned to be expanded in the future.


This will print each record as an XML string.

```python
from evtx import PyEvtxParser


def main():
    parser = PyEvtxParser("./samples/Security_short_selected.evtx")
    for record in parser.records():
        print(f'Event Record ID: {record["event_record_id"]}')
        print(f'Event Timestamp: {record["timestamp"]}')
        print(record['data'])
        print(f'------------------------------------------')
```


And this will print each record as a JSON string.

```python
from evtx.parser import PyEvtxParser


def main():
    parser = PyEvtxParser("./samples/Security_short_selected.evtx")
    for record in parser.records_json():
        print(f'Event Record ID: {record["event_record_id"]}')
        print(f'Event Timestamp: {record["timestamp"]}')
        print(record['data'])
        print(f'------------------------------------------')
```

File-like objects are also supported.

```python
from evtx.parser import PyEvtxParser


def main():
    a = open("./samples/Security_short_selected.evtx", 'rb')

    # io.BytesIO is also supported.
    parser = PyEvtxParser(a)
    for record in parser.records_json():
        print(f'Event Record ID: {record["event_record_id"]}')
        print(f'Event Timestamp: {record["timestamp"]}')
        print(record['data'])
        print(f'------------------------------------------')
```


            

Raw data

            {
    "_id": null,
    "home_page": null,
    "name": "evtx",
    "maintainer": null,
    "docs_url": null,
    "requires_python": ">=3.7",
    "maintainer_email": null,
    "keywords": null,
    "author": "Omer Ben-Amram <omerbenamram@gmail.com>",
    "author_email": "Omer Ben-Amram <omerbenamram@gmail.com>",
    "download_url": null,
    "platform": null,
    "description": "<div align=\"center\">\n  <!-- Downloads -->\n  <a href=\"https://pypi.org/project/evtx/\">\n    <img src=\"https://pepy.tech/badge/evtx\"\n      alt=\"Download\" />\n  </a>\n</div>\n\n\n# pyevtx-rs\n\nPython bindings for `https://github.com/omerbenamram/evtx/`.\n\n## Installation\n\nAvailable on PyPi - https://pypi.org/project/evtx/.\n\nTo install from PyPi - `pip install evtx`\n\n### Wheels\n\nWheels are currently automatically built for Python 3.7+ using abi3 tag (which means they are compatible with all version from 3.7 onwards).\n\nSupported platforms are:\n  - Linux x86_64\n  - macOS x86_64\n  - macOS arm64 (m1)\n  - Windows x86_64\n\n### Installation from sources\n\nInstallation is possible for other platforms by installing from sources.\n\nThis requires a Rust compiler and a recent enough Setuptools and Pip.\n\nRun `pip install -e .`\n\n## Usage\n\nThe API surface is currently fairly limited (only yields events as XML/JSON documents), but is planned to be expanded in the future.\n\n\nThis will print each record as an XML string.\n\n```python\nfrom evtx import PyEvtxParser\n\n\ndef main():\n    parser = PyEvtxParser(\"./samples/Security_short_selected.evtx\")\n    for record in parser.records():\n        print(f'Event Record ID: {record[\"event_record_id\"]}')\n        print(f'Event Timestamp: {record[\"timestamp\"]}')\n        print(record['data'])\n        print(f'------------------------------------------')\n```\n\n\nAnd this will print each record as a JSON string.\n\n```python\nfrom evtx.parser import PyEvtxParser\n\n\ndef main():\n    parser = PyEvtxParser(\"./samples/Security_short_selected.evtx\")\n    for record in parser.records_json():\n        print(f'Event Record ID: {record[\"event_record_id\"]}')\n        print(f'Event Timestamp: {record[\"timestamp\"]}')\n        print(record['data'])\n        print(f'------------------------------------------')\n```\n\nFile-like objects are also supported.\n\n```python\nfrom evtx.parser import PyEvtxParser\n\n\ndef main():\n    a = open(\"./samples/Security_short_selected.evtx\", 'rb')\n\n    # io.BytesIO is also supported.\n    parser = PyEvtxParser(a)\n    for record in parser.records_json():\n        print(f'Event Record ID: {record[\"event_record_id\"]}')\n        print(f'Event Timestamp: {record[\"timestamp\"]}')\n        print(record['data'])\n        print(f'------------------------------------------')\n```\n\n",
    "bugtrack_url": null,
    "license": "MIT/Apache-2.0",
    "summary": "Python bindings for https://github.com/omerbenamram/evtx",
    "version": "0.8.8",
    "project_urls": null,
    "split_keywords": [],
    "urls": [
        {
            "comment_text": null,
            "digests": {
                "blake2b_256": "c1441ac3639fe4137912d13d88dd3564aa1fc7eff4cad9355a14c3394189876f",
                "md5": "5002212ffe574596605f818746cf7b36",
                "sha256": "629b3622537f2877ed39f3deeb73d302aa2782d0a16e15b71b59b07b8af9a501"
            },
            "downloads": -1,
            "filename": "evtx-0.8.8-cp37-abi3-macosx_10_12_x86_64.whl",
            "has_sig": false,
            "md5_digest": "5002212ffe574596605f818746cf7b36",
            "packagetype": "bdist_wheel",
            "python_version": "cp37",
            "requires_python": ">=3.7",
            "size": 874674,
            "upload_time": "2024-11-23T17:44:19",
            "upload_time_iso_8601": "2024-11-23T17:44:19.831985Z",
            "url": "https://files.pythonhosted.org/packages/c1/44/1ac3639fe4137912d13d88dd3564aa1fc7eff4cad9355a14c3394189876f/evtx-0.8.8-cp37-abi3-macosx_10_12_x86_64.whl",
            "yanked": false,
            "yanked_reason": null
        },
        {
            "comment_text": null,
            "digests": {
                "blake2b_256": "e41b86966e4a9badf992deab3cfd6c6e611b81237072c32f00610a922b0b994f",
                "md5": "887940d1989bdf42893f613d53340fe5",
                "sha256": "bc237fc9d0af3e20d40531a760dea9397b6ee551780ca7a910e4088185899a3f"
            },
            "downloads": -1,
            "filename": "evtx-0.8.8-cp37-abi3-macosx_11_0_arm64.whl",
            "has_sig": false,
            "md5_digest": "887940d1989bdf42893f613d53340fe5",
            "packagetype": "bdist_wheel",
            "python_version": "cp37",
            "requires_python": ">=3.7",
            "size": 885900,
            "upload_time": "2024-11-23T17:44:22",
            "upload_time_iso_8601": "2024-11-23T17:44:22.267458Z",
            "url": "https://files.pythonhosted.org/packages/e4/1b/86966e4a9badf992deab3cfd6c6e611b81237072c32f00610a922b0b994f/evtx-0.8.8-cp37-abi3-macosx_11_0_arm64.whl",
            "yanked": false,
            "yanked_reason": null
        },
        {
            "comment_text": null,
            "digests": {
                "blake2b_256": "d92236393b3cf59b4c7177a19b4daf5205dbd98cfcf02e20cb8123643a247ae9",
                "md5": "2edac933830cd7ebbbe277f81d070b69",
                "sha256": "280007163742ee7da2f118544e00d0525e7d16217e33d2ba6453d58007f5e2bb"
            },
            "downloads": -1,
            "filename": "evtx-0.8.8-cp37-abi3-manylinux_2_17_aarch64.manylinux2014_aarch64.whl",
            "has_sig": false,
            "md5_digest": "2edac933830cd7ebbbe277f81d070b69",
            "packagetype": "bdist_wheel",
            "python_version": "cp37",
            "requires_python": ">=3.7",
            "size": 832002,
            "upload_time": "2024-11-23T17:44:24",
            "upload_time_iso_8601": "2024-11-23T17:44:24.493109Z",
            "url": "https://files.pythonhosted.org/packages/d9/22/36393b3cf59b4c7177a19b4daf5205dbd98cfcf02e20cb8123643a247ae9/evtx-0.8.8-cp37-abi3-manylinux_2_17_aarch64.manylinux2014_aarch64.whl",
            "yanked": false,
            "yanked_reason": null
        },
        {
            "comment_text": null,
            "digests": {
                "blake2b_256": "49c8e0b0e6f55c05ed032ad53465d676c5fb7f74ee79806484aa094700c75c6a",
                "md5": "df24ba77a9af493fb1fe65980da17a29",
                "sha256": "9361992e982a8e68834ad11aae524c559b7e255d0491552aa766d3bb3b678dbd"
            },
            "downloads": -1,
            "filename": "evtx-0.8.8-cp37-abi3-manylinux_2_17_x86_64.manylinux2014_x86_64.whl",
            "has_sig": false,
            "md5_digest": "df24ba77a9af493fb1fe65980da17a29",
            "packagetype": "bdist_wheel",
            "python_version": "cp37",
            "requires_python": ">=3.7",
            "size": 950346,
            "upload_time": "2024-11-23T17:44:26",
            "upload_time_iso_8601": "2024-11-23T17:44:26.876365Z",
            "url": "https://files.pythonhosted.org/packages/49/c8/e0b0e6f55c05ed032ad53465d676c5fb7f74ee79806484aa094700c75c6a/evtx-0.8.8-cp37-abi3-manylinux_2_17_x86_64.manylinux2014_x86_64.whl",
            "yanked": false,
            "yanked_reason": null
        },
        {
            "comment_text": null,
            "digests": {
                "blake2b_256": "0165a56d5891a12a055a9de9e54e1036b19226acc2edde1cbdcfc8207a0c1b4f",
                "md5": "24cfc451074062af50bc187683b25f98",
                "sha256": "35ebfc5ad03c9225c52a886d2542ecab7dc66ad61059bb4a865fcd4383397ae7"
            },
            "downloads": -1,
            "filename": "evtx-0.8.8-cp37-abi3-musllinux_1_2_aarch64.whl",
            "has_sig": false,
            "md5_digest": "24cfc451074062af50bc187683b25f98",
            "packagetype": "bdist_wheel",
            "python_version": "cp37",
            "requires_python": ">=3.7",
            "size": 828714,
            "upload_time": "2024-11-23T17:44:28",
            "upload_time_iso_8601": "2024-11-23T17:44:28.769712Z",
            "url": "https://files.pythonhosted.org/packages/01/65/a56d5891a12a055a9de9e54e1036b19226acc2edde1cbdcfc8207a0c1b4f/evtx-0.8.8-cp37-abi3-musllinux_1_2_aarch64.whl",
            "yanked": false,
            "yanked_reason": null
        },
        {
            "comment_text": null,
            "digests": {
                "blake2b_256": "703c1cb5536054c2fa8f36d48b12c5502a9fae1c958cb10149db8a2340641c93",
                "md5": "708f7d4e478426df1b4f35821212e53a",
                "sha256": "c745fa0d08532403d1f1ba3ed8a0f5065a698997e8dff21cfe6e686e0584b922"
            },
            "downloads": -1,
            "filename": "evtx-0.8.8-cp37-abi3-musllinux_1_2_x86_64.whl",
            "has_sig": false,
            "md5_digest": "708f7d4e478426df1b4f35821212e53a",
            "packagetype": "bdist_wheel",
            "python_version": "cp37",
            "requires_python": ">=3.7",
            "size": 857594,
            "upload_time": "2024-11-23T17:44:31",
            "upload_time_iso_8601": "2024-11-23T17:44:31.224297Z",
            "url": "https://files.pythonhosted.org/packages/70/3c/1cb5536054c2fa8f36d48b12c5502a9fae1c958cb10149db8a2340641c93/evtx-0.8.8-cp37-abi3-musllinux_1_2_x86_64.whl",
            "yanked": false,
            "yanked_reason": null
        },
        {
            "comment_text": null,
            "digests": {
                "blake2b_256": "c5e1062cd7af344909399f0d36a5292bcdff68b4b2d8cda4e402e0339e4e3735",
                "md5": "10b28d766991ca0572a804110dc8359c",
                "sha256": "e2faf09f6e04a10e442ab657e3314ed6dd1ba831e9ff1d4da98209e764da0a09"
            },
            "downloads": -1,
            "filename": "evtx-0.8.8-cp37-abi3-win_amd64.whl",
            "has_sig": false,
            "md5_digest": "10b28d766991ca0572a804110dc8359c",
            "packagetype": "bdist_wheel",
            "python_version": "cp37",
            "requires_python": ">=3.7",
            "size": 736349,
            "upload_time": "2024-11-23T17:44:33",
            "upload_time_iso_8601": "2024-11-23T17:44:33.068579Z",
            "url": "https://files.pythonhosted.org/packages/c5/e1/062cd7af344909399f0d36a5292bcdff68b4b2d8cda4e402e0339e4e3735/evtx-0.8.8-cp37-abi3-win_amd64.whl",
            "yanked": false,
            "yanked_reason": null
        }
    ],
    "upload_time": "2024-11-23 17:44:19",
    "github": false,
    "gitlab": false,
    "bitbucket": false,
    "codeberg": false,
    "lcname": "evtx"
}
        
Elapsed time: 0.94415s