DustInDark
GitHub
@@ -167,7 +167,7 @@ fn test_emit_csv() {
|
||||
let expect = "Time,Filepath,Rulepath,Level,Computername,Eventid,Alert,Details\n".to_string()
|
||||
+ &expect_tz.clone().format("%Y-%m-%dT%H:%M:%S%:z").to_string()
|
||||
+ ","
|
||||
+ testfilepath
|
||||
+ &testfilepath.replace(".evtx", "").to_string()
|
||||
+ ","
|
||||
+ testrulepath
|
||||
+ ","
|
||||
|
||||
@@ -50,7 +50,7 @@ impl Message {
|
||||
event_detail: String,
|
||||
) {
|
||||
let detect_info = DetectInfo {
|
||||
filepath: target_file,
|
||||
filepath: target_file.replace(".evtx", ""),
|
||||
rulepath: rule_path,
|
||||
level: level,
|
||||
computername: computername,
|
||||
|
||||
Reference in New Issue
Block a user