HollowsHunter
Scans all running processes. Recognizes and dumps a variety of potentially malicious implants (replaced/implanted PEs, shellcodes, hooks, in-memory patches).
Loading...
Searching...
No Matches
Macros | Functions
suspend.h File Reference
#include <windows.h>

Go to the source code of this file.

Macros

#define INVALID_PID   (-1)
 

Functions

bool suspend_process (DWORD processId)
 
bool resume_process (DWORD processId)
 
bool is_process_associated (DWORD processId)
 
DWORD GetParentProcessID (DWORD dwPID)
 

Macro Definition Documentation

◆ INVALID_PID

#define INVALID_PID   (-1)

Definition at line 4 of file suspend.h.

Function Documentation

◆ GetParentProcessID()

DWORD GetParentProcessID ( DWORD dwPID)

Definition at line 76 of file suspend.cpp.

◆ is_process_associated()

bool is_process_associated ( DWORD processId)

Definition at line 51 of file suspend.cpp.

Here is the call graph for this function:

◆ resume_process()

bool resume_process ( DWORD processId)

Definition at line 29 of file suspend.cpp.

◆ suspend_process()

bool suspend_process ( DWORD processId)

Definition at line 7 of file suspend.cpp.

Generated by doxygen 1.13.2