py311-evtx2splunk
2.0.1_1Evtx to Splunk ingestor
Ingest EVTX files into a Splunk instance. This tool is based on the work of : Omer BenAmram Blardy Thanks to Ekto for its contribution. Key features: - Splunk HEC support with token auto-creation - Splunk index auto-creation - Multiprocessing support - Caching for evtx reuse without reconverting - Windows and Linux compatibility - Rely on the great and fast evtx_dump Rust tool of Omer - Evtx message resolutions from database Note: evtx2splunk converts the EVTX to JSON and stores them in a temporary place. Hence, up to the size of source EVTX can be created during the process. These files are removed at the end of the process, except if keep_cache is enabled.
Origin: textproc/py-evtx2splunk
Category: textproc
Size: 115KiB
License: MIT
Maintainer: acm@FreeBSD.org
Dependencies: 13 packages
Required by: 1 packages
Website: github.com/whikernel/evtx2splunk
$
pkg install py311-evtx2splunkDependencies (13)
Required By (1 packages)
More in textproc
libxml22.15.2
XML parser library for GNOMEexpat2.7.4
XML 1.0 parser written in Cqt5-xml5.15.18p109
Qt SAX and DOM implementations (KDE patched)kf6-kcodecs6.22.0
String encoding librarylibxslt1.1.45
XML stylesheet transformation libraryrubygem-nokogiri1.19.1
HTML, XML, SAX, and Reader parseraspell0.60.8.1_1,1
Spelling checker with better suggestion logic than ispellphp84-xml8.4.16
The xml shared extension for phpkf6-sonnet6.22.0
Multi-language spell checkerp5-XML-LibXML2.0210_1,1
Interface to Gnome libxml2 library