Evtx files with different extension

Question

jurelou opened this issue 2 years ago · comments

Would it be possible to add a command line argument to check for a different file extension ?

thanks !

Alex Kornitzer · Answer 1 · Fri May 13 2022 01:31:28 GMT+0800 (China Standard Time)

As in supporting other event log formats that are not evtx? Or handling evtx files that do not have the evtx extension?

jurelou · Answer 2 · Tue May 17 2022 05:00:26 GMT+0800 (China Standard Time)

I mean handling evtx files that do not have the evtx extension

Alex Kornitzer · Answer 3 · Tue May 17 2022 06:35:01 GMT+0800 (China Standard Time)

Awesome, cause that is on the list for v2, extension will no longer matter. It can be easily backported to v1 too to be honest.

Alex Kornitzer · Answer 4 · Fri Jun 03 2022 00:19:37 GMT+0800 (China Standard Time)

This is addressed in v2.0.0-alpha.0