 |
PE-sieve
Scans all running processes. Recognizes and dumps a variety of potentially malicious implants (replaced/implanted PEs, shellcodes, hooks, in-memory patches).
|
Loading...
Searching...
No Matches
|
PE-sieve
Scans all running processes. Recognizes and dumps a variety of potentially malicious implants (replaced/implanted PEs, shellcodes, hooks, in-memory patches).
|
This is the complete list of members for pesieve::ModuleScanReport, including all inherited members.
| _toJSON(std::stringstream &outs, size_t level=JSON_LEVEL, const pesieve::t_json_level &jdetails=JSON_BASIC) | pesieve::ModuleScanReport | inlineprotectedvirtual |
| get_scan_status(const ModuleScanReport *report) | pesieve::ModuleScanReport | inlinestatic |
| getRelocBase() | pesieve::ModuleScanReport | inlinevirtual |
| isDotNetModule | pesieve::ModuleScanReport | |
| JSON_LEVEL | pesieve::ModuleScanReport | static |
| module | pesieve::ModuleScanReport | |
| moduleFile | pesieve::ModuleScanReport | |
| ModuleScanReport(HMODULE _module, size_t _moduleSize, t_scan_status _status=SCAN_NOT_SUSPICIOUS) | pesieve::ModuleScanReport | inline |
| moduleSize | pesieve::ModuleScanReport | |
| origBase | pesieve::ModuleScanReport | |
| relocBase | pesieve::ModuleScanReport | |
| status | pesieve::ModuleScanReport | |
| toJSON(std::stringstream &outs, size_t level=JSON_LEVEL, const pesieve::t_json_level &jdetails=JSON_BASIC)=0 | pesieve::ModuleScanReport | pure virtual |
| ~ModuleScanReport() | pesieve::ModuleScanReport | inlinevirtual |
1.12.0