Product OverviewEvent Rover, from Dorian Software Creations, provides a revolutionary new way to view and sort event logs - in fact, is an easy-to-use tool for viewing, "hands-free" sorting, and minimising potential harm to original event log stores while doing forensics or just routine log review. Images
Main Console |
Key FeaturesReviews data from active event log (EVT) files
Reviews data from previously saved event log (EVT) files
Reviews data from Event Archiver zip-compressed event log (EVT) files
Sorts event log data effortlessly into user-customisable trees of field groupings
Dynamically regroups event log data on the fly into different trees of field groupings
Summary information (log size, number of events, number of events of a specific type, user accounts found) is presented to the administrator upon log opening
Exports related data to comma-delimited text
Exports grouped log data to an HTML report, with the ability to add comments explaining the data contained within the report
Filters log data at load using an absolute or relative date range
Filters log data by other event log fields
Save frequently-used filters to a local database
Create friendly descriptions for common event identifier numbers NTFS compression of Event Rover's local event logs database to maximize storage
Locally caches saved event log information to speed future review and allow for offsite review of saved event logs What next? |  |
|
