[jira] [Updated] (NIFI-1975) Processor to Parse .evtx files

Bryan Rosander (JIRA) Thu, 09 Jun 2016 06:11:45 -0700

     [ 
https://issues.apache.org/jira/browse/NIFI-1975?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]


Bryan Rosander updated NIFI-1975:
---------------------------------
    Description: 
Windows event logs are stored in .evtx format as-of Windows Vista.  If we port 
the pure python implementation of an evtx parser  at 
https://github.com/williballenthin/python-evtx to Java, we should be able to 
ingest those files in NiFi on any operating system

These files are located in C:\Windows\System32\winevt\Logs unless moved 
elsewhere.

  was:Windows event logs are stored in .evtx format as-of Windows Vista.  If we 
port the pure python implementation of an evtx parser  at 
https://github.com/williballenthin/python-evtx to Java, we should be able to 
ingest those files in NiFi on any operating system


> Processor to Parse .evtx files
> ------------------------------
>
>                 Key: NIFI-1975
>                 URL: https://issues.apache.org/jira/browse/NIFI-1975
>             Project: Apache NiFi
>          Issue Type: Sub-task
>            Reporter: Bryan Rosander
>
> Windows event logs are stored in .evtx format as-of Windows Vista.  If we 
> port the pure python implementation of an evtx parser  at 
> https://github.com/williballenthin/python-evtx to Java, we should be able to 
> ingest those files in NiFi on any operating system
> These files are located in C:\Windows\System32\winevt\Logs unless moved 
> elsewhere.



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)

[jira] [Updated] (NIFI-1975) Processor to Parse .evtx files

Reply via email to