A scanner for detection of PE header's modifications. More...

Inheritance diagram for pesieve::HeadersScanner:

[legend]

Public Member Functions
	HeadersScanner (HANDLE hProc, ModuleData &moduleData, RemoteModuleData &remoteModData)

virtual HeadersScanReport *	scanRemote ()

Public Member Functions inherited from pesieve::ModuleScanner
	ModuleScanner (HANDLE _procHndl, ModuleData &_moduleData, RemoteModuleData &_remoteModData)

virtual	~ModuleScanner ()

Public Member Functions inherited from pesieve::ProcessFeatureScanner
	ProcessFeatureScanner (HANDLE _processHandle)

virtual	~ProcessFeatureScanner ()

Additional Inherited Members
Protected Attributes inherited from pesieve::ModuleScanner
ModuleData &	moduleData

RemoteModuleData &	remoteModData

Protected Attributes inherited from pesieve::ProcessFeatureScanner
HANDLE	processHandle

Detailed Description

A scanner for detection of PE header's modifications.

Definition at line 82 of file headers_scanner.h.

Constructor & Destructor Documentation

pesieve::HeadersScanner::HeadersScanner	(	HANDLE	hProc,
		ModuleData &	moduleData,
		RemoteModuleData &	remoteModData )

inline

Definition at line 84 of file headers_scanner.h.

HeadersScanReport * pesieve::HeadersScanner::scanRemote ( )

virtual

Perform the scan on the remote process

Returns: a pointer to an object of the class inherited from ModuleScanReport

Definition at line 6 of file headers_scanner.cpp.

Here is the call graph for this function:

The documentation for this class was generated from the following files: