PE-sieve
Scans all running processes. Recognizes and dumps a variety of potentially malicious implants (replaced/implanted PEs, shellcodes, hooks, in-memory patches).
Loading...
Searching...
No Matches
Public Member Functions | Static Public Member Functions | Public Attributes | List of all members
pesieve::SyscallTable Struct Reference

#include <syscall_extractor.h>

Public Member Functions

 SyscallTable ()
 
bool isReady ()
 
std::string getSyscallName (DWORD id)
 

Static Public Member Functions

static bool isSameSyscallFunc (std::string func1, std::string func2)
 

Public Attributes

std::map< DWORD, std::string > syscallToName
 

Detailed Description

Definition at line 13 of file syscall_extractor.h.

Constructor & Destructor Documentation

◆ SyscallTable()

pesieve::SyscallTable::SyscallTable ( )
inline

Definition at line 45 of file syscall_extractor.h.

Here is the call graph for this function:

Member Function Documentation

◆ getSyscallName()

std::string pesieve::SyscallTable::getSyscallName ( DWORD id)
inline

Definition at line 58 of file syscall_extractor.h.

◆ isReady()

bool pesieve::SyscallTable::isReady ( )
inline

Definition at line 53 of file syscall_extractor.h.

◆ isSameSyscallFunc()

static bool pesieve::SyscallTable::isSameSyscallFunc ( std::string func1,
std::string func2 )
inlinestatic

Definition at line 15 of file syscall_extractor.h.

Member Data Documentation

◆ syscallToName

std::map<DWORD, std::string> pesieve::SyscallTable::syscallToName

Definition at line 67 of file syscall_extractor.h.

The documentation for this struct was generated from the following file:
Generated by doxygen 1.12.0