PE-sieve
Scans all running processes. Recognizes and dumps a variety of potentially malicious implants (replaced/implanted PEs, shellcodes, hooks, in-memory patches).
All Classes Namespaces Files Functions Variables Typedefs Enumerations Enumerator Friends Macros Pages
process_minidump.h
Go to the documentation of this file.
1#pragma once
2#include <windows.h>
3#include <string>
4
5namespace pesieve {
6 namespace util {
7
8 bool make_minidump(DWORD pid, const std::string &out_file);
9 };
10};
pesieve::util::make_minidump
bool make_minidump(DWORD pid, const std::string &out_file)
Definition process_minidump.cpp:51
pesieve::util::DWORD
DWORD(__stdcall *_PssCaptureSnapshot)(HANDLE ProcessHandle
Generated by doxygen 1.13.2