[
https://issues.apache.org/jira/browse/NIFI-1975?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15317667#comment-15317667
]
ASF GitHub Bot commented on NIFI-1975:
--------------------------------------
Github user mattyb149 commented on a diff in the pull request:
https://github.com/apache/nifi/pull/492#discussion_r66000380
--- Diff:
nifi-nar-bundles/nifi-evtx-bundle/nifi-evtx-nar/src/main/resources/META-INF/NOTICE
---
@@ -0,0 +1,36 @@
+nifi-evtx-nar
+Copyright 2016 The Apache Software Foundation
+
+This includes derived works from the Apache Software License V2 library
python-evtx (https://github.com/williballenthin/python-evtx)
+Copyright 2012, 2013 Willi Ballenthin [email protected]
+while at Mandiant http://www.mandiant.com
+The derived work is adapted from Evtx/Evtx.py, Evtx/BinaryParser.py,
Evtx/Nodes.py, Evtx/Views.py and can be found in the
org.apache.nifi.processors.evtx.parser package.
+
--- End diff --
Seems comprehensive, thanks! I will defer to @joewitt if this is sufficient
> Processor to Parse .evtx files
> ------------------------------
>
> Key: NIFI-1975
> URL: https://issues.apache.org/jira/browse/NIFI-1975
> Project: Apache NiFi
> Issue Type: Sub-task
> Reporter: Bryan Rosander
>
> Windows event logs are stored in .evtx format as-of Windows Vista. If we
> port the pure python implementation of an evtx parser at
> https://github.com/williballenthin/python-evtx to Java, we should be able to
> ingest those files in NiFi on any operating system
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
