 |
PE-sieve
Scans all running processes. Recognizes and dumps a variety of potentially malicious implants (replaced/implanted PEs, shellcodes, hooks, in-memory patches).
|
Loading...
Searching...
No Matches
|
PE-sieve
Scans all running processes. Recognizes and dumps a variety of potentially malicious implants (replaced/implanted PEs, shellcodes, hooks, in-memory patches).
|
#include <windows.h>#include <iostream>#include "pe_sieve_types.h"#include "../pe_sieve_report.h"Go to the source code of this file.
Namespaces | |
| namespace | pesieve |
Functions | |
| std::string | pesieve::scan_report_to_string (const ProcessScanReport &report) |
| std::string | pesieve::scan_report_to_json (const ProcessScanReport &process_report, ProcessScanReport::t_report_filter filter, const pesieve::t_json_level &jdetails, size_t start_level=0) |
| std::string | pesieve::dump_report_to_json (const ProcessDumpReport &process_report, const pesieve::t_json_level &jdetails, size_t start_level=0) |
| std::string | pesieve::report_to_json (const pesieve::ReportEx &report, const t_report_type rtype, ProcessScanReport::t_report_filter filter, const pesieve::t_json_level &jdetails, size_t start_level=0) |
1.10.0