PE-sieve
Scans all running processes. Recognizes and dumps a variety of potentially malicious implants (replaced/implanted PEs, shellcodes, hooks, in-memory patches).
Loading...
Searching...
No Matches
pesieve::CodeScanReport Member List

This is the complete list of members for pesieve::CodeScanReport, including all inherited members.

_toJSON(std::stringstream &outs, size_t level=JSON_LEVEL, const pesieve::t_json_level &jdetails=JSON_BASIC)pesieve::ModuleScanReportinlineprotectedvirtual
CodeScanReport(HMODULE _module, size_t _moduleSize)pesieve::CodeScanReportinline
countInaccessibleSections()pesieve::CodeScanReportinline
countSectionsWithStatus(const t_section_status neededStatus)pesieve::CodeScanReportinline
countUnpackedSections()pesieve::CodeScanReportinline
fieldsToJSON(std::stringstream &outs, size_t level, const pesieve::t_json_level &jdetails)pesieve::CodeScanReportinlinevirtual
generateTags(const std::string &reportPath)pesieve::CodeScanReport
get_scan_status(const ModuleScanReport *report)pesieve::ModuleScanReportinlinestatic
getRelocBase()pesieve::CodeScanReportinlinevirtual
isDotNetModulepesieve::ModuleScanReport
JSON_LEVELpesieve::ModuleScanReportstatic
modulepesieve::ModuleScanReport
moduleFilepesieve::ModuleScanReport
ModuleScanReport(HMODULE _module, size_t _moduleSize, t_scan_status _status=SCAN_NOT_SUSPICIOUS)pesieve::ModuleScanReportinline
moduleSizepesieve::ModuleScanReport
origBasepesieve::ModuleScanReport
patchesListpesieve::CodeScanReport
relocBasepesieve::ModuleScanReport
SECTION_NOT_MODIFIED enum valuepesieve::CodeScanReport
SECTION_PATCHED enum valuepesieve::CodeScanReport
SECTION_SCAN_ERR enum valuepesieve::CodeScanReport
section_status enum namepesieve::CodeScanReport
SECTION_UNPACKED enum valuepesieve::CodeScanReport
sectionToResultpesieve::CodeScanReport
statuspesieve::ModuleScanReport
t_section_status typedefpesieve::CodeScanReport
toJSON(std::stringstream &outs, size_t level, const pesieve::t_json_level &jdetails)pesieve::CodeScanReportinlinevirtual
~ModuleScanReport()pesieve::ModuleScanReportinlinevirtual