Header
The header structure contains general information about the events. It contains the following fields:
| Field name | Type | Description |
|---|---|---|
pid | i32 | Pid of the process that generated the event |
is_threat | bool | Indicates if the event is a threat |
source | String | Name of the module that generated the evnt |
timestamp | SystemTime | Timestamp of the event |
image | String | Name of the executable that generated the event |
parent | i32 | Parent PID of the process that generated the event |
fork_time | SystemTime | Timestamp of the fork of the process |