Documentation
¶
Rendered for windows/amd64
Index ¶
Constants ¶
This section is empty.
Variables ¶
This section is empty.
Functions ¶
This section is empty.
Types ¶
type EventLog ¶
type EventLog struct {
EventDataMap map[string]string `xml:"EventData" json:"eventDataMap,omitempty"`
EventData []string ` json:"eventData,omitempty"`
UserData map[string]interface{} ` json:"userData,omitempty"`
System struct {
Provider struct {
Name string `xml:"Name,attr" json:"name"`
Guid string `xml:"Guid,attr" json:"guid"`
} `xml:"Provider" json:"provider"`
EventID string `xml:"EventID" json:"eventId"`
Version string `xml:"Version" json:"version"`
Level string `xml:"Level" json:"level"`
Task string `xml:"Task" json:"task"`
Opcode string `xml:"Opcode" json:"opcode"`
Keywords string `xml:"Keywords" json:"keywords"`
TimeCreated struct {
SystemTime time.Time `xml:"SystemTime,attr" json:"systemTime"`
} `xml:"TimeCreated" json:"timeCreated"`
EventRecordID string `xml:"EventRecordID" json:"eventRecordId"`
Correlation struct {
} `xml:"Correlation" json:"correlation"`
Execution struct {
ProcessID string `xml:"ProcessID,attr" json:"processId"`
ThreadID string `xml:"ThreadID,attr" json:"threadId"`
} `xml:"Execution" json:"execution"`
Channel string `xml:"Channel" json:"channel"`
Computer string `xml:"Computer" json:"computer"`
Security struct {
UserID string `xml:"UserID,attr" json:"userId"`
} `xml:"Security" json:"security"`
} `xml:"System" json:"system"`
}
type EventLogSource ¶
type EventLogSource struct {
Channel string
Query string
// contains filtered or unexported fields
}
func NewEventLogSource ¶
func NewEventLogSource(opts ...Option) *EventLogSource
Source Files
Click to show internal directories.
Click to hide internal directories.