stuxnet999
diff --git a/‎EventTranscriptParser.exe‎
27.6 MB b/‎EventTranscriptParser.exe‎
27.6 MB
diff --git a/‎README.md‎
Lines changed: 39 additions & 3 deletions b/‎README.md‎
Lines changed: 39 additions & 3 deletions
diff --git a/‎img/exe-usage.png‎
58.8 KB b/‎img/exe-usage.png‎
58.8 KB
@@ -29,16 +29,27 @@ These are the required python libraries/modules needed to run the script
 + os
 + argparse
 
+All the above modules are available by default in python3 except **Pandas**.
+
+To install pandas, use `pip` via command prompt/terminal.
+
+```sh
+pip install pandas
+```
+
 ### Usage
 
-The tool is completely CLI based.
+**Tip**: Before running the tool against the database, make sure that the **-wal (Write Ahead Log)** file data is merged with the original database. Because you might miss out on crucial/juicy data.
+
+The tool is completely CLI based and there are 2 ways to use it.
+
+#### Using Python
 
 ```python
 python EventTranscriptParser.py -f <Path-To-EventTranscript.db> -o <Path-To-Output-Directory>
 ```
 ![usage](./img/usage.png)
 
-**Tip**: Before running the tool against the database, make sure that the **-wal (Write Ahead Log)** file data is merged with the original database. Because you might miss out on crucial/juicy data.
 
 To view help,
 ```
@@ -47,6 +58,31 @@ python EventTranscriptParser.py -h
 
 ![help](./img/help.png)
 
+#### Using Executable
+
+If you do not have python pre-installed in you system or have issues with the running the script, you can use the compiled executable. The executable is also CLI based.
+
+Download the executable from https://github.com/stuxnet999/EventTranscriptParser/releases
+
+```sh
+.\EventTranscriptParser.exe -f .\EventTranscript.db -o .\CSV-Output\
+```
+
+![exe-usage](./img/exe-usage.png)
+
+The executable was compiled using `pyinstaller` version **4.5.1**.
+
+#### Compiling on your own
+
+If you wish to compile on your own, use the commands below in any command prompt/terminal window.
+
+```sh
+pip install pyinstaller
+pyinstaller --onefile EventTranscriptParser.py
+```
+
+You will find the compiled executable in the `dist` directory.
+
 ### Acknowledgements
 
 This tool wouldn't have been possible without the excellent research & hard work put in by my colleagues [Andrew Rathbun](https://twitter.com/bunsofwrath12) & [Josh Mitchell](https://www.linkedin.com/in/josh-mitchell-0990ba6a/) in investigating the Windows Diagnostic Data.
@@ -60,4 +96,4 @@ Follow the investigative series at Kroll on EventTranscript.db - https://www.kro
 Abhiram Kumar
 
 + Twitter: [@_abhiramkumar](https://www.twitter.com/_abhiramkumar)
-+ Personal blog: https://stuxnet999.github.io
++ Personal blog: https://stuxnet999.github.io