Error message loading a procmon file from Windows

Sysinternals / ProcMon-for-Linux

Procmon is a Linux reimagining of the classic Procmon tool from the Sysinternals suite of tools for Windows. Procmon provides a convenient and efficient way for Linux developers to trace the syscall activity on the system.

MIT License

4k stars 259 forks source link

Error message loading a procmon file from Windows #53

Open 111andre111 opened 4 years ago

111andre111 commented 4 years ago

At the Moment Procmon for Linux does not work when I am trying to load a generated Procmon file from Windows.

Failed to load tracefile Logfile.PML with error: Failed to query DB for event countroot

What is going wrong here? Is there something I can do?

Ubuntu I am having is 18.04 with uname -r = 4.18.0-15-generic

jahabibi commented 4 years ago

Hey @111andre111 Procmon for Linux is a Linux reimagining of the windows utility and not a port. With that we currently do not support opening Windows Procmon logs within Procmon for Linux.

111andre111 commented 4 years ago

Ok, that makes sense, but just as an addition I would love to be able to dive onto PML logs on Linux Platforms. So are there at least any plans to add this functionality?

MarioHewardt commented 3 years ago

This is something that we have on the 'enhancements' backlog though can't tell you for sure when/if it becomes reality. Great suggestion/idea!

QGB commented 1 year ago