PE-sieve
Scans all running processes. Recognizes and dumps a variety of potentially malicious implants (replaced/implanted PEs, shellcodes, hooks, in-memory patches).
Loading...
Searching...
No Matches
Namespaces | Variables
demo.py File Reference

Go to the source code of this file.

Namespaces

namespace  demo
 

Variables

 demo.params = pesieve.t_params()
 
 demo.pid
 
 demo.dotnet_policy
 
 demo.imprec_mode
 
 demo.quiet
 
 demo.out_filter
 
 demo.no_hooks
 
 demo.shellcode
 
 demo.obfuscated
 
 demo.threads
 
 demo.iat
 
 demo.data
 
 demo.minidump
 
 demo.dump_mode
 
 demo.json_output
 
 demo.make_reflection
 
 demo.use_cache
 
 demo.json_lvl
 
 demo.output_dir
 
 demo.modules_ignored
 
 demo.length
 
 demo.buffer
 
int demo.json_max_size = 2000
 
 demo.report
 
 demo.json
 
 demo.out_size
 
Generated by doxygen 1.12.0