Vista Event Log File Parsing Based on XML Technology
Microsoft Windows Vista operating system provides a new design of event log service, which is totally different with Windows NT operating system. It uses binary XML technology to organize the data. The structure of the event log file is complex and the information is not directviewing. This paper propose a solution that we adopt XML technology to parse Vista event log file and to present the result intuitively. The result can be applied into further computer forensics.
Vista Event log Binary XML file parsing
Huang Xiaoyu Wu Shunxiang
Department of Automation Xiamen University Xiamen, China
国际会议
第四届国际计算机新科技与教育学术会议(2009 4th International Conference on Computer Science & Education)
南京
英文
1186-1190
2009-07-25(万方平台首次上网日期,不代表论文的发表时间)