PE-sieve
Scans all running processes. Recognizes and dumps a variety of potentially malicious implants (replaced/implanted PEs, shellcodes, hooks, in-memory patches).
Loading...
Searching...
No Matches
Enumerations
pe_sieve_return_codes.h File Reference

The codes returned by the PE-sieve EXE. More...

Go to the source code of this file.

Enumerations

enum  t_pesieve_res { PESIEVE_ERROR = (-1) , PESIEVE_INFO = 0 , PESIEVE_NOT_DETECTED = 1 , PESIEVE_DETECTED = 2 }
 

Detailed Description

The codes returned by the PE-sieve EXE.

Definition in file pe_sieve_return_codes.h.

Enumeration Type Documentation

◆ t_pesieve_res

enum t_pesieve_res
Enumerator
PESIEVE_ERROR 

the scan has failed, PE-sieve returned an error

PESIEVE_INFO 

PE-sieve was deployed in the info mode (i.e. displaying help)

PESIEVE_NOT_DETECTED 

the process was scanned successfuly, and NO suspicious indicators are detected

PESIEVE_DETECTED 

the process was scanned successfuly, and some suspicious indicators are detected

Definition at line 9 of file pe_sieve_return_codes.h.

Generated by doxygen 1.10.0