Is it possible to pass a file via standard input? It looks like there's some seeking going on that would prevent this at the moment. I tried:
evtx_dump -o jsonl /dev/stdin
This prints:
Error: Failed to open evtx file at: /dev/stdin
Caused by:
0: An error occurred while trying to deserialize evtx stream.
1: An expected I/O error has occurred
2: Offset `0x00000000 (0)` - An error has occurred while trying to deserialize binary stream
failed to seek in file_header
Original message:
`Illegal seek (os error 29)`
Is it possible to pass a file via standard input? It looks like there's some seeking going on that would prevent this at the moment. I tried:
This prints: