HollowsHunter
Scans all running processes. Recognizes and dumps a variety of potentially malicious implants (replaced/implanted PEs, shellcodes, hooks, in-memory patches).
Loading...
Searching...
No Matches
Classes | Macros | Typedefs | Enumerations
hh_params.h File Reference
#include <pe_sieve_api.h>
#include <string>
#include <set>

Go to the source code of this file.

Classes

struct  hh_params
 

Macros

#define TIME_UNDEFINED   LONGLONG(-1)
 
#define HH_DEFAULT_DIR   "hollows_hunter.dumps"
 

Typedefs

typedef struct hh_params t_hh_params
 

Enumerations

enum  t_cache_mode { CACHE_DISABLED = 0 , CACHE_AUTO , CACHE_ENABLED , CACHE_MODES_COUNT }
 

Macro Definition Documentation

◆ HH_DEFAULT_DIR

#define HH_DEFAULT_DIR   "hollows_hunter.dumps"

Definition at line 8 of file hh_params.h.

◆ TIME_UNDEFINED

#define TIME_UNDEFINED   LONGLONG(-1)

Definition at line 7 of file hh_params.h.

Typedef Documentation

◆ t_hh_params

typedef struct hh_params t_hh_params

Enumeration Type Documentation

◆ t_cache_mode

enum t_cache_mode
Enumerator
CACHE_DISABLED 

cache always disabled

CACHE_AUTO 

autodetect if cache should be enabled

CACHE_ENABLED 

cache always enabled

CACHE_MODES_COUNT 

Definition at line 11 of file hh_params.h.

Generated by doxygen 1.13.2