Skip to content

Commit bba9e22

Browse files
ajread4ajread4
committed
added comments and explanations to evtx_dump_json
1 parent df1f3fd commit bba9e22

1 file changed

Lines changed: 6 additions & 4 deletions

File tree

scripts/evtx_dump_json.py

Lines changed: 6 additions & 4 deletions
Original file line numberDiff line numberDiff line change
@@ -1,10 +1,12 @@
1-
# Written by AJ Read with help from evtx_dump.py file. Adds functionality to dump EVTX to JSON.
1+
# Written by AJ Read with help from evtx_dump.py file
2+
# Adds functionality to evtx_dump so that the user can dump evtx data formatted in JSON to the command line or a file.
3+
# The JSON data uses only the "EventRecordID" from the "System" XML structure while using all the fields in the "EventData" xml structure.
24

35
import Evtx.Evtx as evtx
46
import Evtx.Views as e_views
5-
import os
6-
import xmltodict
7-
import json
7+
import os #added dependency
8+
import xmltodict #added dependency
9+
import json #added dependency
810

911
def main():
1012
import argparse

0 commit comments

Comments
 (0)