Skip to content
/ win32-etw-manifest Public

Generic ETW manifest file with a "key: value" format for events.

License

GPL-3.0, MIT licenses found

Licenses found

GPL-3.0
LICENSE
MIT
LICENSE.md
2 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

flowerinthenight/win32-etw-manifest

BranchesTags

Repository files navigation

win32-etw-manifest

Generic ETW manifest file with a "key: value" format for events. Check out this blog post for more information.

How to compile the manifest file

mc -um <name>.man

Compile .rc to .res

rc <input>.rc

Create a dll from the .res file

link -dll -noentry -out:<out>.dll <input>.res

Register the manifest to the system

wevtutil im <manifest_file>.man /rf:"<full_path_to_noentry_dll>" /mf:"<full_path_to_noentry_dll>"

Remove the manifest from the system:

wevtutil um <manifest_file>.man

License

The MIT License

About

Generic ETW manifest file with a "key: value" format for events.

Topics

windows etw

Resources

Readme

License

GPL-3.0, MIT licenses found

Licenses found

GPL-3.0
LICENSE
MIT
LICENSE.md
Activity

Stars

2 stars

Watchers

3 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages