We read every piece of feedback, and take your input very seriously.
To see all available qualifiers, see our documentation.
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Hi guys,
I'm trying to add providers on the fly after the session is started. I tried different ways but I can't do it.
The next code is a part about what I'm trying to do but It doesn't work
providers = [etw.ProviderInfo('Microsoft-Windows-Kernel-Process', etw.GUID("{22FB2CD6-0E7B-422B-A0C7-2FAD1FD0E716}"))] job = etw.ETW(providers=providers, event_callback=lambda x: print(x)) job.start() job.add_provider(etw.ProviderInfo('Microsoft-Windows-Kernel-File', etw.GUID("{EDD08927-9CC4-4E65-B970-C2560FB5C289}")))
However, if I add the provider before starting the job, it is added.
providers = [etw.ProviderInfo('Microsoft-Windows-Kernel-Process', etw.GUID("{22FB2CD6-0E7B-422B-A0C7-2FAD1FD0E716}"))] job = etw.ETW(providers=providers, event_callback=lambda x: print(x)) job.add_provider(etw.ProviderInfo('Microsoft-Windows-Kernel-File', etw.GUID("{EDD08927-9CC4-4E65-B970-C2560FB5C289}"))) job.start()
Am I doing something wrong?
Thanks in advance :)
PS: I've tried also with job.query() and job.update() methods without success.
job.query()
job.update()
The text was updated successfully, but these errors were encountered:
No branches or pull requests
Hi guys,
I'm trying to add providers on the fly after the session is started. I tried different ways but I can't do it.
The next code is a part about what I'm trying to do but It doesn't work
However, if I add the provider before starting the job, it is added.
Am I doing something wrong?
Thanks in advance :)
PS: I've tried also with
job.query()
andjob.update()
methods without success.The text was updated successfully, but these errors were encountered: