PE-sieve
Scans all running processes. Recognizes and dumps a variety of potentially malicious implants (replaced/implanted PEs, shellcodes, hooks, in-memory patches).
All Classes Namespaces Files Functions Variables Typedefs Enumerations Enumerator Friends Macros Pages
process_details.h
Go to the documentation of this file.
1#pragma once
2
3#include <windows.h>
4
5namespace pesieve {
6
7 typedef struct _process_details
8 {
9 _process_details()
10 : isReflection(false), isDEP(false) {}
11
12 _process_details(bool _isReflection, bool _isDEP)
13 : isReflection(_isReflection), isDEP(_isDEP) {}
14
15 _process_details(const _process_details& other)
16 {
17 this->isReflection = other.isReflection;
18 this->isDEP = other.isDEP;
19 }
20
21 bool isReflection;
22 bool isDEP;
23
24 } process_details;
25
26}; // namespace pesieve
pesieve::process_details
struct pesieve::_process_details process_details
pesieve::_process_details::_process_details
_process_details()
Definition process_details.h:9
pesieve::_process_details::isDEP
bool isDEP
Definition process_details.h:22
pesieve::_process_details::_process_details
_process_details(bool _isReflection, bool _isDEP)
Definition process_details.h:12
pesieve::_process_details::isReflection
bool isReflection
Definition process_details.h:21
pesieve::_process_details::_process_details
_process_details(const _process_details &other)
Definition process_details.h:15
Generated by doxygen 1.13.2