{"library":"python-evtx","title":"python-evtx","description":"A pure Python parser for Windows event log files (.evtx). Version 0.8.1 supports Python >=3.9, provides XML and JSON dump functionality, and extracts event records from EVTX files. Maintenance is active with occasional releases.","language":"python","status":"active","last_verified":"Fri May 01","install":{"commands":["pip install python-evtx"],"cli":{"name":"evtx_dump","version":"Traceback (most recent call last):"}},"imports":["from evtx import Evtx","from evtx import PyEvtxParser"],"auth":{"required":false,"env_vars":[]},"quickstart":{"code":"from evtx import PyEvtxParser\n\nparser = PyEvtxParser('example.evtx')\nfor record in parser.records():\n    print(record['data'])","lang":"python","description":"Open an EVTX file and iterate over records; each record contains 'event_data' (XML string) and 'data' (raw string when JSON not available).","tag":null,"tag_description":null,"last_tested":null,"results":[]},"compatibility":null}