Crate evtx 

Modules

binxml

err

model

wevt_templates

Offline extraction/parsing/rendering of Windows Event Log templates (WEVT_TEMPLATE).

Macros

unimplemented_fn

Errors on unimplemented functions instead on panicking.

Structs

EvtxChunk

A struct which can hold references to chunk data (EvtxChunkData). All references are created together, and can be assume to live for the entire duration of the parsing phase. See more info about lifetimes in IterChunkRecords.

EvtxChunkData

A struct which owns all the data associated with a chunk. See EvtxChunk for more.

EvtxChunkHeader

EvtxFileHeader

EvtxParser

Wraps a single EvtxFileHeader.

EvtxRecord

EvtxRecordHeader

HeaderFlags

IntoIterChunks

IterChunkRecords

An iterator over a chunk, yielding records. This iterator can be created using the iter function on EvtxChunk.

IterChunks

ParserSettings

SerializedEvtxRecord

Utf16LeSlice

A borrowed UTF-16LE slice plus a logical code-unit length.

Enums

Utf16LeDecodeError

Errors that can occur while validating or decoding UTF-16LE data.

Functions

checksum_ieee

Type Aliases

ChunkOffset

FileOffset

RecordId