PE-sieve
Scans all running processes. Recognizes and dumps a variety of potentially malicious implants (replaced/implanted PEs, shellcodes, hooks, in-memory patches).
Loading...
Searching...
No Matches
utils
strings_util.h
Go to the documentation of this file.
1
#pragma once
2
3
#include <string>
4
5
namespace
pesieve
{
6
7
#define IS_ENDLINE(c) (c == 0x0A || c == 0xD)
8
#define IS_PRINTABLE(c) ((c >= 0x20 && c < 0x7f) || IS_ENDLINE(c))
9
10
namespace
util {
11
12
std::string
to_lowercase
(std::string);
13
14
// Compare cstrings (ignore case)
15
bool
is_cstr_equal
(
char
const
*
a
,
char
const
*
b
,
const
size_t
max_len
);
16
17
};
18
};
pesieve::util::to_lowercase
std::string to_lowercase(std::string)
Definition
strings_util.cpp:6
pesieve::util::is_cstr_equal
bool is_cstr_equal(char const *a, char const *b, const size_t max_len)
Definition
strings_util.cpp:12
pesieve
Definition
pesieve.py:1
pesieve::fill_iat
size_t fill_iat(BYTE *vBuf, size_t vBufSize, IN const peconv::ExportsMapper *exportsMap, IN OUT IATBlock &iat, IN ThunkFoundCallback *callback)
Definition
iat_finder.h:31
Generated by
1.10.0