PE-sieve
Scans all running processes. Recognizes and dumps a variety of potentially malicious implants (replaced/implanted PEs, shellcodes, hooks, in-memory patches).
Loading...
Searching...
No Matches
pesieve::ArtefactScanReport Member List

This is the complete list of members for pesieve::ArtefactScanReport, including all inherited members.

_toJSON(std::stringstream &outs, size_t level=JSON_LEVEL, const pesieve::t_json_level &jdetails=JSON_BASIC)pesieve::ModuleScanReportinlineprotectedvirtual
all_matched_countpesieve::WorkingSetScanReport
area_infopesieve::WorkingSetScanReport
artefactspesieve::ArtefactScanReport
ArtefactScanReport(HMODULE _module, size_t _moduleSize, t_scan_status status, PeArtefacts &peArt)pesieve::ArtefactScanReportinline
custom_matchedpesieve::WorkingSetScanReport
data_cachepesieve::WorkingSetScanReport
fieldsToJSON(std::stringstream &outs, size_t level, const pesieve::t_json_level &jdetails)pesieve::ArtefactScanReportinlinevirtual
generateTags(const std::string &reportPath)pesieve::WorkingSetScanReport
get_scan_status(const ModuleScanReport *report)pesieve::ModuleScanReportinlinestatic
getRelocBase()pesieve::ModuleScanReportinlinevirtual
has_pepesieve::WorkingSetScanReport
has_shellcodepesieve::WorkingSetScanReport
initialRegionSizepesieve::ArtefactScanReport
is_executablepesieve::WorkingSetScanReport
is_listed_modulepesieve::WorkingSetScanReport
isDotNetModulepesieve::ModuleScanReport
JSON_LEVELpesieve::ModuleScanReportstatic
mapped_namepesieve::WorkingSetScanReport
mapping_typepesieve::WorkingSetScanReport
match_area_startpesieve::WorkingSetScanReport
modulepesieve::ModuleScanReport
moduleFilepesieve::ModuleScanReport
ModuleScanReport(HMODULE _module, size_t _moduleSize, t_scan_status _status=SCAN_NOT_SUSPICIOUS)pesieve::ModuleScanReportinline
moduleSizepesieve::ModuleScanReport
origBasepesieve::ModuleScanReport
patternsToJSON(std::stringstream &outs, size_t level, const pesieve::t_json_level &jdetails)pesieve::WorkingSetScanReportinlineprotected
protectionpesieve::WorkingSetScanReport
relocBasepesieve::ModuleScanReport
statspesieve::WorkingSetScanReport
statuspesieve::ModuleScanReport
toJSON(std::stringstream &outs, size_t level, const pesieve::t_json_level &jdetails)pesieve::ArtefactScanReportinlinevirtual
translate_mapping_type(DWORD type)pesieve::WorkingSetScanReportinlineprotectedstatic
WorkingSetScanReport(HMODULE _module, size_t _moduleSize, t_scan_status status)pesieve::WorkingSetScanReportinline
~ModuleScanReport()pesieve::ModuleScanReportinlinevirtual
Generated by doxygen 1.12.0