pe-sieve/entropy__stats_8h_source.html

#pragma once


#include <windows.h>

#include "entropy.h"

#include "stats.h"


namespace pesieve {


    class AreaEntropyStats : public AreaStats {

    public:


        AreaEntropyStats()

            : AreaStats(),

            entropy(0.0)

        {

        }


        // Copy constructor


        AreaEntropyStats(const AreaEntropyStats& p1)

        {

            area_size = p1.area_size;

            area_start = p1.area_start;

            entropy = p1.entropy;

        }


        void _appendVal(BYTE val)

        {

            histogram[val]++;

        }


        virtual void summarize()

        {

            entropy = stats::calcShannonEntropy(histogram, area_size);

        }


        double entropy;


    protected:


        const virtual void fieldsToJSON(std::stringstream& outs, size_t level)

        {

            OUT_PADDED(outs, level, "\"area_start\" : ");

            outs << "\"" << std::hex << area_start << "\"";

            outs << ",\n";

            OUT_PADDED(outs, level, "\"area_size\" : ");

            outs << "\"" << std::hex << area_size << "\"";

            outs << ",\n";

            OUT_PADDED(outs, level, "\"entropy\" : ");

            outs << std::dec << entropy;

        }


        std::map<BYTE, size_t> histogram;


        friend class AreaStatsCalculator;


    }; // AreaStats


};

pesieve::AreaEntropyStats
Definition entropy_stats.h:9

pesieve::AreaEntropyStats::AreaEntropyStats
AreaEntropyStats(const AreaEntropyStats &p1)
Definition entropy_stats.h:18

pesieve::AreaEntropyStats::fieldsToJSON
virtual const void fieldsToJSON(std::stringstream &outs, size_t level)
Definition entropy_stats.h:38

pesieve::AreaEntropyStats::AreaEntropyStats
AreaEntropyStats()
Definition entropy_stats.h:11

pesieve::AreaEntropyStats::summarize
virtual void summarize()
Definition entropy_stats.h:30

pesieve::AreaEntropyStats::histogram
std::map< BYTE, size_t > histogram
Definition entropy_stats.h:50

pesieve::AreaEntropyStats::_appendVal
void _appendVal(BYTE val)
Definition entropy_stats.h:25

pesieve::AreaEntropyStats::entropy
double entropy
Definition entropy_stats.h:35

pesieve::AreaStatsCalculator
A class responsible for filling in the statistics with the data from the particular buffer.
Definition stats.h:73

pesieve::AreaStats
Base class for the statistics from analyzed buffer.
Definition stats.h:20

pesieve::AreaStats::area_size
size_t area_size
Definition stats.h:64

pesieve::AreaStats::area_start
size_t area_start
Definition stats.h:65

entropy.h

OUT_PADDED
#define OUT_PADDED(stream, field_size, str)
Definition format_util.h:12

pesieve::stats::calcShannonEntropy
double calcShannonEntropy(std::map< T, size_t > &histogram, size_t totalSize)
Definition entropy.h:22

pesieve
Definition pesieve.py:1

stats.h