Move processtree to dfir-toolkit

janstarke / evtxtools

⛔️ DEPRECATED: Use https://github.com/dfir-dd/dfir-toolkit instead

https://github.com/dfir-dd/dfir-toolkit

GNU General Public License v3.0

3 stars 0 forks source link

Move processtree to dfir-toolkit #3

Open OblackatO opened 9 months ago

OblackatO commented 9 months ago

Hello, while I was using dfir-toolkit, I noticed that mos tools from this project were moved there.

There's however an interesting tool, called processtree, which was not moved to the dfir-toolkit repository. Also, when installing this project with cargo: cargo install evtxtools, procresstree is not installed.

Could you maybe move processtree to dfir-toolkit?

janstarke commented 9 months ago

Hello, I (kind of) integrated this functionality into evtxanalyze (https://github.com/dfir-dd/dfir-toolkit/blob/main/doc/evtxanalyze.md#evtxanalyze-pstree). However, this is not documented yet. So, I'll make your request an issue...

Regards, Jan