You are viewing a plain text version of this content. The canonical link for it is here.
Posted to issues@nifi.apache.org by "Alex Marmer (Jira)" <ji...@apache.org> on 2020/01/14 05:14:00 UTC
[jira] [Commented] (MINIFICPP-775) Explore triggers for windows API
calls
[ https://issues.apache.org/jira/browse/MINIFICPP-775?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17014864#comment-17014864 ]
Alex Marmer commented on MINIFICPP-775:
---------------------------------------
We can create a Dll, which minificpp server injects in the processes specified in config.yml. Server can use WMI asynchronous notifications when a particular server is started.
In the Dll is used API interception, for instance [https://github.com/gdabah/distormx]. In config.yml can be specified Windows APIs (for instance Registry APIs) which needs to be intercepted.
After intercepted API gets data, it is sent to minificpp server using IPC communication (for instance named pipes).
> Explore triggers for windows API calls
> --------------------------------------
>
> Key: MINIFICPP-775
> URL: https://issues.apache.org/jira/browse/MINIFICPP-775
> Project: Apache NiFi MiNiFi C++
> Issue Type: New Feature
> Environment: Windows
> Reporter: Marc Parisi
> Assignee: Alex Marmer
> Priority: Major
> Labels: Windows
> Fix For: 0.8.0
>
>
> Explore creating triggers on a windows system that allow us to capture events and create provenance when needed.
--
This message was sent by Atlassian Jira
(v8.3.4#803005)