HollowsHunter
Scans all running processes. Recognizes and dumps a variety of potentially malicious implants (replaced/implanted PEs, shellcodes, hooks, in-memory patches).
Loading...
Searching...
No Matches
Functions
suspend.cpp File Reference
#include "suspend.h"
#include <iostream>
#include <psapi.h>
#include "ntddk.h"

Go to the source code of this file.

Functions

bool suspend_process (DWORD processId)
 
bool resume_process (DWORD processId)
 
bool is_process_associated (DWORD remote_pid)
 
DWORD GetParentProcessID (DWORD dwPID)
 

Function Documentation

◆ GetParentProcessID()

DWORD GetParentProcessID ( DWORD dwPID)

Definition at line 70 of file suspend.cpp.

◆ is_process_associated()

bool is_process_associated ( DWORD remote_pid)

Definition at line 45 of file suspend.cpp.

Here is the call graph for this function:

◆ resume_process()

bool resume_process ( DWORD processId)

Definition at line 26 of file suspend.cpp.

◆ suspend_process()

bool suspend_process ( DWORD processId)

Definition at line 7 of file suspend.cpp.

Generated by doxygen 1.12.0