diff options
| author | Omer Ben-Amram <omerbenamram@gmail.com> | 2019-06-03 16:52:00 +0300 |
|---|---|---|
| committer | Omer Ben-Amram <omerbenamram@gmail.com> | 2019-06-03 16:52:00 +0300 |
| commit | a4f609d87c7eb29e37c7900d0cb40b7fd79fc84e (patch) | |
| tree | 5b246e18cacc862be6c8a34cc97b336a65805e63 | |
| parent | c9a6557fc6b65aaa2a807691bace876eb46228ea (diff) | |
tiny things
| -rw-r--r-- | README.md | 2 | ||||
| -rw-r--r-- | src/bin/mft_dump.rs | 2 |
2 files changed, 2 insertions, 2 deletions
@@ -27,7 +27,7 @@ The main binary utility provided with this crate is `mft_dump`, and it provides Some examples - `mft_dump <evtx_file>` will dump contents of mft entries as JSON. - `mft_dump -o csv <evtx_file>` will dump contents of mft entries as CSV. - - `mft_dump -e <output_directory> -o json <input_file>` will extract all resident streams in MFT to files. + - `mft_dump --extract-resident-streams <output_directory> -o json <input_file>` will extract all resident streams in MFT to files in <output_directory>. # Library usage: ```rust,no_run diff --git a/src/bin/mft_dump.rs b/src/bin/mft_dump.rs index 7815da1..28829e3 100644 --- a/src/bin/mft_dump.rs +++ b/src/bin/mft_dump.rs @@ -18,7 +18,7 @@ use std::process::exit; use std::{fs, io, path}; -/// Simple error macro for use inside of internal errors in `EvtxDump` +/// Simple error macro for use inside of internal errors in `MftDump` macro_rules! err { ($($tt:tt)*) => { Err(Box::<dyn std::error::Error>::from(format!($($tt)*))) } } |