 |
PE-sieve
Scans all running processes. Recognizes and dumps a variety of potentially malicious implants (replaced/implanted PEs, shellcodes, hooks, in-memory patches).
|
Loading...
Searching...
No Matches
|
PE-sieve
Scans all running processes. Recognizes and dumps a variety of potentially malicious implants (replaced/implanted PEs, shellcodes, hooks, in-memory patches).
|
This is the complete list of members for pesieve::ImportTableBuffer, including all inherited members.
| allocDesciptors(size_t descriptors_count) | pesieve::ImportTableBuffer | inline |
| allocDllsSpace(DWORD dlls_rva, size_t dlls_area_size) | pesieve::ImportTableBuffer | inline |
| allocNamesSpace(DWORD names_rva, size_t names_size) | pesieve::ImportTableBuffer | inline |
| descriptors | pesieve::ImportTableBuffer | protected |
| getDescriptorsSize() | pesieve::ImportTableBuffer | inline |
| getDescriptosCount() | pesieve::ImportTableBuffer | inline |
| getDllNamesSize() | pesieve::ImportTableBuffer | inline |
| getDllSpaceAt(const DWORD rva, size_t required_size) | pesieve::ImportTableBuffer | protected |
| getNamesSize() | pesieve::ImportTableBuffer | inline |
| getNamesSpaceAt(const DWORD rva, size_t required_size) | pesieve::ImportTableBuffer | protected |
| getRVA() | pesieve::ImportTableBuffer | inline |
| ImportTableBuffer(DWORD _descriptorsRVA) | pesieve::ImportTableBuffer | inline |
| ImpReconstructor class | pesieve::ImportTableBuffer | friend |
| setTableInPe(BYTE *vBuf, size_t vBufSize) | pesieve::ImportTableBuffer | inline |
| ~ImportTableBuffer() | pesieve::ImportTableBuffer | inline |
1.13.2