A base class of all the reports detailing on the output of the performed module's scan. More...

#include <module_scan_report.h>

Inheritance diagram for pesieve::ModuleScanReport:

[legend]

Public Member Functions
	ModuleScanReport (HMODULE _module, size_t _moduleSize, t_scan_status _status=SCAN_NOT_SUSPICIOUS)

virtual	~ModuleScanReport ()

virtual ULONGLONG	getRelocBase ()

virtual const bool	toJSON (std::stringstream &outs, size_t level=JSON_LEVEL, const pesieve::t_json_level &jdetails=JSON_BASIC)=0

Static Public Member Functions
static t_scan_status	get_scan_status (const ModuleScanReport *report)

Public Attributes
HMODULE	module

size_t	moduleSize

bool	isDotNetModule

std::string	moduleFile

ULONGLONG	origBase

ULONGLONG	relocBase

t_scan_status	status

Static Public Attributes
static const size_t	JSON_LEVEL = 1

Protected Member Functions
virtual const bool	_toJSON (std::stringstream &outs, size_t level=JSON_LEVEL, const pesieve::t_json_level &jdetails=JSON_BASIC)

Detailed Description

A base class of all the reports detailing on the output of the performed module's scan.

Definition at line 25 of file module_scan_report.h.

Constructor & Destructor Documentation

◆ ModuleScanReport()

pesieve::ModuleScanReport::ModuleScanReport	(	HMODULE	_module,
		size_t	_moduleSize,
		t_scan_status	_status = SCAN_NOT_SUSPICIOUS )

inline

Definition at line 39 of file module_scan_report.h.

◆ ~ModuleScanReport()

virtual pesieve::ModuleScanReport::~ModuleScanReport ( )

inlinevirtual

Definition at line 46 of file module_scan_report.h.

Member Function Documentation

◆ _toJSON()

virtual const bool pesieve::ModuleScanReport::_toJSON	(	std::stringstream &	outs,
		size_t	level = JSON_LEVEL,
		const pesieve::t_json_level &	jdetails = JSON_BASIC )

inlineprotectedvirtual

Definition at line 64 of file module_scan_report.h.

Here is the call graph for this function:

◆ get_scan_status()

static t_scan_status pesieve::ModuleScanReport::get_scan_status ( const ModuleScanReport * report )

inlinestatic

Definition at line 30 of file module_scan_report.h.

◆ getRelocBase()

virtual ULONGLONG pesieve::ModuleScanReport::getRelocBase ( )

inlinevirtual

Reimplemented in pesieve::CodeScanReport.

Definition at line 48 of file module_scan_report.h.

◆ toJSON()

virtual const bool pesieve::ModuleScanReport::toJSON	(	std::stringstream &	outs,
		size_t	level = JSON_LEVEL,
		const pesieve::t_json_level &	jdetails = JSON_BASIC )

pure virtual

Implemented in pesieve::ArtefactScanReport, pesieve::CodeScanReport, pesieve::HeadersScanReport, pesieve::IATScanReport, pesieve::MalformedHeaderReport, pesieve::MappingScanReport, pesieve::SkippedModuleReport, pesieve::ThreadScanReport, pesieve::UnreachableModuleReport, and pesieve::WorkingSetScanReport.

Member Data Documentation

◆ isDotNetModule

bool pesieve::ModuleScanReport::isDotNetModule

Definition at line 57 of file module_scan_report.h.

◆ JSON_LEVEL

const size_t pesieve::ModuleScanReport::JSON_LEVEL = 1

static

Definition at line 28 of file module_scan_report.h.

◆ module

HMODULE pesieve::ModuleScanReport::module

Definition at line 55 of file module_scan_report.h.

◆ moduleFile

std::string pesieve::ModuleScanReport::moduleFile

Definition at line 58 of file module_scan_report.h.

◆ moduleSize

size_t pesieve::ModuleScanReport::moduleSize

Definition at line 56 of file module_scan_report.h.

◆ origBase

ULONGLONG pesieve::ModuleScanReport::origBase

Definition at line 59 of file module_scan_report.h.

◆ relocBase

ULONGLONG pesieve::ModuleScanReport::relocBase

Definition at line 60 of file module_scan_report.h.

◆ status

t_scan_status pesieve::ModuleScanReport::status

Definition at line 61 of file module_scan_report.h.

The documentation for this class was generated from the following file:

scanners/module_scan_report.h

Public Member Functions

Static Public Member Functions

Public Attributes

Static Public Attributes

Protected Member Functions