evtxtools 1.12.1

tools for the analysis of evtx files
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38

use clap::{ValueEnum, Parser, Subcommand};

#[derive(ValueEnum, Clone)]
pub enum Format {
    Json,
    Markdown,

    #[clap(name="latex")]
    LaTeX,

    Dot
}

#[derive(Subcommand)]
pub enum Command {
    /// generate a process tree
    #[clap(name="pstree")]
    PsTree {
        /// display only processes of this user (case insensitive regex search)
        #[clap(short('U'), long("username"))]
        username: Option<String>,
    }
}

#[derive(Parser)]
pub (crate) struct Cli {
    /// Name of the evtx file to parse
    pub (crate) evtx_file: String,

    #[command(subcommand)]
    pub (crate) command: Command,

    #[clap(short('F'), long("format"), value_enum, default_value_t=Format::Json)]
    pub (crate) format: Format,

    #[command(flatten)]
    pub (crate) verbose: clap_verbosity_flag::Verbosity,
}