Why Go
- Case Studies
  
  Common problems companies solve with Go
- Use Cases
  
  Stories about how and why companies use Go
- Security
  
  How Go can help keep you secure by default
Learn
Docs
- Effective Go
  
  Tips for writing clear, performant, and idiomatic Go code
- Go User Manual
  
  A complete introduction to building software with Go
- Standard library
  
  Reference documentation for Go's standard library
- Release Notes
  
  Learn what's new in each Go release
Packages
Community
- Recorded Talks
  
  Videos from prior events
- Meetups
  
  Meet other local Go developers
- Conferences
  
  Learn and network with Go developers from around the world
- Go blog
  
  The Go project's official blog.
- Go project
  
  Get help and stay informed from Go
- Get connected

igevtx

package

v0.0.0-...-0908972 Latest Latest Go to latest Published: May 12, 2019 License: BSD-3-Clause Imports: 8 Imported by: 0

Details

Valid go.mod file
Redistributable license
Tagged version
Stable version
Learn more about best practices

Repository

github.com/2igosha/igevtx

Links

Open Source Insights

Documentation ¶

Overview ¶

Parse the contents of the EVTX files. Reference: https://docs.microsoft.com/en-us/openspecs/windows_protocols/ms-even6/c73573ae-1c90-43a2-a65f-ad7501155956 (c) 2019, igosha (2igosha@gmail.com)

Index ¶

func ParseEvtx(fname string, hnd EventHandler) error
type EventHandler

Constants ¶

This section is empty.

Variables ¶

This section is empty.

Functions ¶

func ParseEvtx ¶

func ParseEvtx(fname string, hnd EventHandler) error

Completely parse the EVTX file, use hnd as callback for every record found

Types ¶

type EventHandler ¶

type EventHandler func(when time.Time, num uint64, variable map[string]string)

Callback type for ParseEvtx, gets the timestamp, record number and values for each event log record

Source Files ¶

View all Source files