grokevt - scripts for reading Microsoft Windows event log files

Property Value
Distribution Debian 10 (Buster)
Repository Debian Main amd64
Package filename grokevt_0.5.0-2_all.deb
Package name grokevt
Package version 0.5.0
Package release 2
Package architecture all
Package type deb
Category admin::logging interface::commandline role::program security::forensics security::log-analyzer use::converting utils works-with::logfile
License -
Maintainer Debian Security Tools <>
Download size 34.18 KB
Installed size 120.00 KB
GrokEVT is a collection of scripts built for reading Microsoft Windows
NT/2000/XP/2003 event log files.
Currently the scripts work together on one or more mounted Microsoft Windows
partitions to extract all information needed (registry entries, message
templates, and log files) to convert the logs to a human-readable format.
This program is useful in forensics investigations.


Package Version Architecture Repository
grokevt_0.5.0-2_all.deb 0.5.0 all Debian Main
grokevt - - -


Name Value
python3:any >= 3.3.2-2~
python:any -
reglookup -


Type URL
Binary Package grokevt_0.5.0-2_all.deb
Source Package grokevt

Install Howto

  1. Update the package index:
    # sudo apt-get update
  2. Install grokevt deb package:
    # sudo apt-get install grokevt




2018-05-02 - Samuel Henrique <>
grokevt (0.5.0-2) unstable; urgency=medium
[ Raphaƫl Hertzog ]
* Update team maintainer address to Debian Security Tools
* Update Vcs-Git and Vcs-Browser for the move to
[ Samuel Henrique ]
* Bump DH to 11
* Bump Standards-Version to
* d/control: fix FTBFS: add missing build-dep on python3-distutils
(closes: #896758)
* d/copyright: update debian/* entry
2017-11-18 - Samuel Henrique <>
grokevt (0.5.0-1) unstable; urgency=medium
* New upstream release 0.5.0:
- Fix manpage formatting (closes: #705326)
* Bump DH level to 10
* Bump watch to v4
* Bump Standards-Version to 4.1.1
* Build with python3
* Add myself as an uploader
* d/control: point Vcs-* fields to https
* d/copyright: remove obsolete google code url
* d/patches:
- refresh patches
- python3_path: fix to use python3 instead of python
- install_prefix: use $(PREFIX) variable on Makefile
- merge the following 3 patches into one:
~ python3_path, install_prefix and 01-config-path becomes
- example_configuration: new patch to correct path of example
configs on docs
* d/watch: remove obsolete google code url
* wrap-and-sort -a
2015-06-16 - Joao Eriberto Mota Filho <>
grokevt (0.4.1-10) unstable; urgency=medium
* Team upload.
* Upload to unstable.
2015-03-11 - Joao Eriberto Mota Filho <>
grokevt (0.4.1-9) experimental; urgency=medium
* Team upload.
* Migrations:
- DebSrc to 3.0.
- Updated the DH level to 9.
* debian/control:
- Removed quilt from Build-Depends field. DH9 no longer needs this.
- Updated the Vcs-* fields.
* debian/copyright:
- Added a header in 1.0 format.
- Updated all information.
- Updated the GPL-2 license text.
* debian/patches/01-config-path.patch: added the Last-Update field to header.
* debian/rules:
- Little adjustments in format.
- Removed 'quilt' as helper to build.
* debian/source.lintian-overrides: useless now. Removed.
* debian/watch: removed an useless source.
2014-11-17 - Joao Eriberto Mota Filho <>
grokevt (0.4.1-8) experimental; urgency=medium
* Team upload.
* Bumped Standards-Version to 3.9.6.
* debian/control:
- Added python as build dependency.
- Improved the long description.
- Replaced the obsolete python-support by dh-python.
* debian/rules: added python2 as helper.
* debian/watch: added new tracking rules.
2010-07-28 - Michael Prokop <>
grokevt (0.4.1-7) unstable; urgency=low
[ Christophe Monniez ]
* Fixing quilt depency in control file.
* Bumping standards version to 3.9.0.
* Renaming the example directory to avoid confusion (Closes: #590094).
[ Michael Prokop ]
* Add debian/dirs to create directory
2009-11-05 - Michael Prokop <>
grokevt (0.4.1-6) unstable; urgency=low
[ Daniel Baumann ]
* Minimizing rules file.
[ Christophe Monniez ]
* Fixing VCS fields in control file.
* Fixing etc path in Makefile.
[ Michael Prokop ]
* Bump Standards-Version to 3.8.3 (no further changes).
* Bump Build-Depends to debhelper (>= 7.0.50~).
2009-07-15 - Daniel Baumann <>
grokevt (0.4.1-5) unstable; urgency=low
[ Christophe Monniez ]
* Added cpio as a build dependency (Closes: #537036).
2009-07-09 - Daniel Baumann <>
grokevt (0.4.1-4) unstable; urgency=low
* Updating package to standards version 3.8.2.
* Adding lintian overrides.
* Using correct rfc-2822 date formats in changelog.
2009-05-28 - Daniel Baumann <>
grokevt (0.4.1-3) unstable; urgency=low
* Updating vcs fields.
* Adding myself to copyright file.
* Replacing obsolete dh_clean -k with dh_prep.
* Updating year in copyright file.
* Updating package to standards 3.8.1.
* Using quilt rather than dpatch.
* Tidy rules file.

See Also

Package Description
grokmirror_1.0.0-1.1_all.deb framework to smartly mirror git repositories
gromacs-data_2019.1-1_all.deb GROMACS molecular dynamics sim, data and documentation
gromacs-mpich_2019.1-1_amd64.deb Molecular dynamics sim, binaries for MPICH parallelization
gromacs-openmpi_2019.1-1_amd64.deb Molecular dynamics sim, binaries for OpenMPI parallelization
gromacs_2019.1-1_amd64.deb Molecular dynamics simulator, with building and analysis tools
gromit-mpx_1.3-1_amd64.deb GTK+ based tool to make annotations on screen with multiple pointers
gromit_20041213-9+b2_amd64.deb GTK based tool to make annotations on screen
gron_0.6.0-1+b10_amd64.deb tool to transform JSON into discrete, greppable assignments
groonga-bin_9.0.0-1+deb10u1_amd64.deb Commands for Groonga
groonga-doc_9.0.0-1+deb10u1_all.deb Documentation of Groonga
groonga-examples_9.0.0-1+deb10u1_all.deb Examples of Groonga
groonga-httpd_9.0.0-1+deb10u1_amd64.deb Groonga HTTP server
groonga-munin-plugins_9.0.0-1+deb10u1_all.deb munin-node plugins for Groonga
groonga-normalizer-mysql_1.1.3-2_amd64.deb MySQL derived normalizer for Groonga
groonga-plugin-suggest_9.0.0-1+deb10u1_amd64.deb Suggest plugin for Groonga