PE-sieve
Scans all running processes. Recognizes and dumps a variety of potentially malicious implants (replaced/implanted PEs, shellcodes, hooks, in-memory patches).
Loading...
Searching...
No Matches
strings_util.h
Go to the documentation of this file.
1#pragma once
2
3#include <string>
4
5namespace pesieve {
6
7 #define IS_ENDLINE(c) (c == 0x0A || c == 0xD)
8 #define IS_PRINTABLE(c) ((c >= 0x20 && c < 0x7f) || IS_ENDLINE(c))
9
10 namespace util {
11
12 std::string to_lowercase(std::string);
13
14 // Compare cstrings (ignore case)
15 bool is_cstr_equal(char const *a, char const *b, const size_t max_len);
16
17 };
18};
pesieve::util::to_lowercase
std::string to_lowercase(std::string)
Definition strings_util.cpp:6
pesieve::util::is_cstr_equal
bool is_cstr_equal(char const *a, char const *b, const size_t max_len)
Definition strings_util.cpp:12
pesieve::fill_iat
size_t fill_iat(BYTE *vBuf, size_t vBufSize, IN const peconv::ExportsMapper *exportsMap, IN OUT IATBlock &iat, IN ThunkFoundCallback *callback)
Definition iat_finder.h:31
Generated by doxygen 1.10.0