Skip to content
/ Window-Log-Forensics-Tool Public
forked from mun1bxD/Window-Log-Forensics-Tool

Forensilog is a sophisticated tool for analyzing and modifying Windows Event Log files, featuring a user-friendly C# GUI for efficient forensic investigations and system audits.

0 stars 1 fork Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

mishqatabid/Window-Log-Forensics-Tool

BranchesTags
 
 

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

14 Commits
Forensilog
Forensilog
 
 
Forensilog_setup
Forensilog_setup
 
 
images
images
 
 
.gitattributes
.gitattributes
 
 
.gitignore
.gitignore
 
 
Forensilog.sln
Forensilog.sln
 
 
README.md
README.md
 
 

Repository files navigation

Forensilog

Forensilog is a sophisticated tool designed for the analysis and modification of Windows Event Log files. Developed with a user-friendly C# GUI, Forensilog allows users to efficiently work with and manage Windows log files, enhancing their ability to conduct thorough forensic investigations and system audits.

Note: It is highly recommended to read the documentation before using this tool to ensure effective and correct usage.

Functionality

  1. View Windows Event Log Files: Easily access and read event log files.
  2. Modify Log Files: Edit and update log file entries as needed.
  3. Create or Delete Log Files: Generate new log files or remove existing ones.
  4. Delete All Logs from a File: Clear all entries within a log file.
  5. Generate Random Log Files: Create log files with randomly generated data.
  6. Analyze Log Files: Add tags and notable items for detailed analysis.
  7. Manage Baselines: Create, update, and delete baselines of log files to ensure security and detect any new or altered logs.
  8. Generate Reports: Produce comprehensive reports based on the analysis of log files.

Features

  1. Home Page:

    • Provides access to various functions like adding or deleting log files.
    third

  2. Log File Table:

    • Displays available log files in the system on the home page.
    third

  3. Application Log Tab:

    • Add, view, and delete application log files. Similar functionality is available for system logs.
    third

  4. Investigation Tab:

    • Add log files and investigator details, then tag events and add notable items for thorough investigation.
    third

  5. Investigator Details:

    • Manage and add details of investigators along with relevant information.
    third

  6. Log and Item Management:

    • View and add log files, notable items, and tagged items.
    third

  7. Security Assessment Page:

    • This page is critical for security assessments and requires careful reading of the documentation for proper use.
    third

  8. Final Report:

    • Generate a comprehensive report of the investigation.
    third

Forensilog provides a powerful set of tools for managing Windows Event Log files, making it an invaluable asset for forensic and security professionals. Be sure to consult the detailed documentation to make the most of its extensive features.

About

Forensilog is a sophisticated tool for analyzing and modifying Windows Event Log files, featuring a user-friendly C# GUI for efficient forensic investigations and system audits.

Topics

auditing security-tools csharp-app windows-forensics secure-audit-log windows-logs

Resources

Readme
Activity

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages

  • C# 100.0%