deploy: 00164d0

artefacts__util_8h_source.html

@@ -140,10 +140,10 @@
 </div>
 <div class="line"><a id="l00052" name="l00052"></a><span class="lineno">   52</span>}</div>
 <div class="ttc" id="anamespacepesieve_1_1matcher_html_a1219264b984e5f20ac9931e1b657ecdf"><div class="ttname"><a href="namespacepesieve_1_1matcher.html#a1219264b984e5f20ac9931e1b657ecdf">pesieve::matcher::load_pattern_file</a></div><div class="ttdeci">size_t load_pattern_file(const char *filename)</div><div class="ttdef"><b>Definition</b> <a href="artefacts__util_8cpp_source.html#l00148">artefacts_util.cpp:148</a></div></div>
-<div class="ttc" id="anamespacepesieve_1_1matcher_html_a24f7803d36d731fc9d461dcc5ef4dfc2"><div class="ttname"><a href="namespacepesieve_1_1matcher.html#a24f7803d36d731fc9d461dcc5ef4dfc2">pesieve::matcher::find_all_patterns</a></div><div class="ttdeci">size_t find_all_patterns(BYTE *loadedData, size_t loadedSize, std::vector&lt; sig_finder::Match &gt; &amp;allMatches)</div><div class="ttdef"><b>Definition</b> <a href="artefacts__util_8cpp_source.html#l00173">artefacts_util.cpp:173</a></div></div>
-<div class="ttc" id="anamespacepesieve_1_1matcher_html_a3c1a8e735f72a0a674131cc8396efc7e"><div class="ttname"><a href="namespacepesieve_1_1matcher.html#a3c1a8e735f72a0a674131cc8396efc7e">pesieve::matcher::filter_custom</a></div><div class="ttdeci">size_t filter_custom(std::vector&lt; sig_finder::Match &gt; &amp;allMatches, std::vector&lt; sig_finder::Match &gt; &amp;customPatternMatches)</div><div class="ttdef"><b>Definition</b> <a href="artefacts__util_8cpp_source.html#l00185">artefacts_util.cpp:185</a></div></div>
+<div class="ttc" id="anamespacepesieve_1_1matcher_html_a24f7803d36d731fc9d461dcc5ef4dfc2"><div class="ttname"><a href="namespacepesieve_1_1matcher.html#a24f7803d36d731fc9d461dcc5ef4dfc2">pesieve::matcher::find_all_patterns</a></div><div class="ttdeci">size_t find_all_patterns(BYTE *loadedData, size_t loadedSize, std::vector&lt; sig_finder::Match &gt; &amp;allMatches)</div><div class="ttdef"><b>Definition</b> <a href="artefacts__util_8cpp_source.html#l00176">artefacts_util.cpp:176</a></div></div>
+<div class="ttc" id="anamespacepesieve_1_1matcher_html_a3c1a8e735f72a0a674131cc8396efc7e"><div class="ttname"><a href="namespacepesieve_1_1matcher.html#a3c1a8e735f72a0a674131cc8396efc7e">pesieve::matcher::filter_custom</a></div><div class="ttdeci">size_t filter_custom(std::vector&lt; sig_finder::Match &gt; &amp;allMatches, std::vector&lt; sig_finder::Match &gt; &amp;customPatternMatches)</div><div class="ttdef"><b>Definition</b> <a href="artefacts__util_8cpp_source.html#l00188">artefacts_util.cpp:188</a></div></div>
 <div class="ttc" id="anamespacepesieve_1_1matcher_html_a7e2fd79abceff922ed62a858c0fe9702"><div class="ttname"><a href="namespacepesieve_1_1matcher.html#a7e2fd79abceff922ed62a858c0fe9702">pesieve::matcher::is_matcher_ready</a></div><div class="ttdeci">bool is_matcher_ready()</div><div class="ttdef"><b>Definition</b> <a href="artefacts__util_8cpp_source.html#l00143">artefacts_util.cpp:143</a></div></div>
-<div class="ttc" id="anamespacepesieve_1_1matcher_html_af2abc59fa1094c4adc610238da632762"><div class="ttname"><a href="namespacepesieve_1_1matcher.html#af2abc59fa1094c4adc610238da632762">pesieve::matcher::init_shellcode_patterns</a></div><div class="ttdeci">bool init_shellcode_patterns()</div><div class="ttdef"><b>Definition</b> <a href="artefacts__util_8cpp_source.html#l00162">artefacts_util.cpp:162</a></div></div>
+<div class="ttc" id="anamespacepesieve_1_1matcher_html_af2abc59fa1094c4adc610238da632762"><div class="ttname"><a href="namespacepesieve_1_1matcher.html#af2abc59fa1094c4adc610238da632762">pesieve::matcher::init_shellcode_patterns</a></div><div class="ttdeci">bool init_shellcode_patterns()</div><div class="ttdef"><b>Definition</b> <a href="artefacts__util_8cpp_source.html#l00165">artefacts_util.cpp:165</a></div></div>
 <div class="ttc" id="anamespacepesieve_1_1util_html_a299ca6901f644e1b271bfdc8916a858e"><div class="ttname"><a href="namespacepesieve_1_1util.html#a299ca6901f644e1b271bfdc8916a858e">pesieve::util::is_32bit_code</a></div><div class="ttdeci">size_t is_32bit_code(BYTE *loadedData, size_t loadedSize)</div><div class="ttdef"><b>Definition</b> <a href="artefacts__util_8cpp_source.html#l00072">artefacts_util.cpp:72</a></div></div>
 <div class="ttc" id="anamespacepesieve_1_1util_html_a57e9c1266c247784669f5ea0191e086d"><div class="ttname"><a href="namespacepesieve_1_1util.html#a57e9c1266c247784669f5ea0191e086d">pesieve::util::is_readable</a></div><div class="ttdeci">bool is_readable(DWORD mapping_type, DWORD protection)</div><div class="ttdef"><b>Definition</b> <a href="artefacts__util_8cpp_source.html#l00115">artefacts_util.cpp:115</a></div></div>
 <div class="ttc" id="anamespacepesieve_1_1util_html_a9a1dac61a6a85886543fe742b091caf1"><div class="ttname"><a href="namespacepesieve_1_1util.html#a9a1dac61a6a85886543fe742b091caf1">pesieve::util::find_pattern</a></div><div class="ttdeci">BYTE * find_pattern(BYTE *buffer, size_t buf_size, BYTE *pattern_buf, size_t pattern_size, size_t max_iter=0)</div><div class="ttdef"><b>Definition</b> <a href="artefacts__util_8cpp_source.html#l00010">artefacts_util.cpp:10</a></div></div>

classpesieve_1_1_working_set_scanner.html

@@ -303,7 +303,7 @@ <h2 class="memtitle"><span class="permalink"><a href="#ac66d70d22a149e709998b4cf
 </table>
 </div><div class="memdoc">
 
-<p class="definition">Definition at line <a class="el" href="workingset__scanner_8cpp_source.html#l00157">157</a> of file <a class="el" href="workingset__scanner_8cpp_source.html">workingset_scanner.cpp</a>.</p>
+<p class="definition">Definition at line <a class="el" href="workingset__scanner_8cpp_source.html#l00160">160</a> of file <a class="el" href="workingset__scanner_8cpp_source.html">workingset_scanner.cpp</a>.</p>
 <div class="dynheader">
 Here is the call graph for this function:</div>
 <div class="dyncontent">
@@ -344,7 +344,7 @@ <h2 class="memtitle"><span class="permalink"><a href="#a1ceb025397c65bc550c7fbad
 </table>
 </div><div class="memdoc">
 
-<p class="definition">Definition at line <a class="el" href="workingset__scanner_8cpp_source.html#l00165">165</a> of file <a class="el" href="workingset__scanner_8cpp_source.html">workingset_scanner.cpp</a>.</p>
+<p class="definition">Definition at line <a class="el" href="workingset__scanner_8cpp_source.html#l00168">168</a> of file <a class="el" href="workingset__scanner_8cpp_source.html">workingset_scanner.cpp</a>.</p>
 <div class="dynheader">
 Here is the call graph for this function:</div>
 <div class="dyncontent">
@@ -385,7 +385,7 @@ <h2 class="memtitle"><span class="permalink"><a href="#a98fe3023305ff14521c6d709
 </table>
 </div><div class="memdoc">
 
-<p class="definition">Definition at line <a class="el" href="workingset__scanner_8cpp_source.html#l00239">239</a> of file <a class="el" href="workingset__scanner_8cpp_source.html">workingset_scanner.cpp</a>.</p>
+<p class="definition">Definition at line <a class="el" href="workingset__scanner_8cpp_source.html#l00242">242</a> of file <a class="el" href="workingset__scanner_8cpp_source.html">workingset_scanner.cpp</a>.</p>
 <div class="dynheader">
 Here is the call graph for this function:</div>
 <div class="dyncontent">
@@ -424,7 +424,7 @@ <h2 class="memtitle"><span class="permalink"><a href="#a187f116177d802202f7f0b89
 </table>
 </div><div class="memdoc">
 
-<p class="definition">Definition at line <a class="el" href="workingset__scanner_8cpp_source.html#l00198">198</a> of file <a class="el" href="workingset__scanner_8cpp_source.html">workingset_scanner.cpp</a>.</p>
+<p class="definition">Definition at line <a class="el" href="workingset__scanner_8cpp_source.html#l00201">201</a> of file <a class="el" href="workingset__scanner_8cpp_source.html">workingset_scanner.cpp</a>.</p>
 <div class="dynheader">
 Here is the call graph for this function:</div>
 <div class="dyncontent">
@@ -465,7 +465,7 @@ <h2 class="memtitle"><span class="permalink"><a href="#ac138db8672dbc502cc8e23a4
 </table>
 </div><div class="memdoc">
 
-<p class="definition">Definition at line <a class="el" href="workingset__scanner_8cpp_source.html#l00250">250</a> of file <a class="el" href="workingset__scanner_8cpp_source.html">workingset_scanner.cpp</a>.</p>
+<p class="definition">Definition at line <a class="el" href="workingset__scanner_8cpp_source.html#l00253">253</a> of file <a class="el" href="workingset__scanner_8cpp_source.html">workingset_scanner.cpp</a>.</p>
 <div class="dynheader">
 Here is the call graph for this function:</div>
 <div class="dyncontent">
@@ -560,7 +560,7 @@ <h2 class="memtitle"><span class="permalink"><a href="#adde1b7a7fa726861fcea3669
 
 <p>Implements <a class="el" href="classpesieve_1_1_process_feature_scanner.html#a8c85491f592bbfe32e4906dddea8973f">pesieve::ProcessFeatureScanner</a>.</p>
 
-<p class="definition">Definition at line <a class="el" href="workingset__scanner_8cpp_source.html#l00303">303</a> of file <a class="el" href="workingset__scanner_8cpp_source.html">workingset_scanner.cpp</a>.</p>
+<p class="definition">Definition at line <a class="el" href="workingset__scanner_8cpp_source.html#l00306">306</a> of file <a class="el" href="workingset__scanner_8cpp_source.html">workingset_scanner.cpp</a>.</p>
 <div class="dynheader">
 Here is the call graph for this function:</div>
 <div class="dyncontent">

namespacepesieve_1_1matcher.html

@@ -116,7 +116,7 @@ <h2 class="memtitle"><span class="permalink"><a href="#a3c1a8e735f72a0a674131cc8
       </table>
 </div><div class="memdoc">
 
-<p class="definition">Definition at line <a class="el" href="artefacts__util_8cpp_source.html#l00185">185</a> of file <a class="el" href="artefacts__util_8cpp_source.html">artefacts_util.cpp</a>.</p>
+<p class="definition">Definition at line <a class="el" href="artefacts__util_8cpp_source.html#l00188">188</a> of file <a class="el" href="artefacts__util_8cpp_source.html">artefacts_util.cpp</a>.</p>
 
 </div>
 </div>
@@ -144,7 +144,7 @@ <h2 class="memtitle"><span class="permalink"><a href="#a24f7803d36d731fc9d461dcc
       </table>
 </div><div class="memdoc">
 
-<p class="definition">Definition at line <a class="el" href="artefacts__util_8cpp_source.html#l00173">173</a> of file <a class="el" href="artefacts__util_8cpp_source.html">artefacts_util.cpp</a>.</p>
+<p class="definition">Definition at line <a class="el" href="artefacts__util_8cpp_source.html#l00176">176</a> of file <a class="el" href="artefacts__util_8cpp_source.html">artefacts_util.cpp</a>.</p>
 <div class="dynheader">
 Here is the call graph for this function:</div>
 <div class="dyncontent">
@@ -173,7 +173,7 @@ <h2 class="memtitle"><span class="permalink"><a href="#af2abc59fa1094c4adc610238
       </table>
 </div><div class="memdoc">
 
-<p class="definition">Definition at line <a class="el" href="artefacts__util_8cpp_source.html#l00162">162</a> of file <a class="el" href="artefacts__util_8cpp_source.html">artefacts_util.cpp</a>.</p>
+<p class="definition">Definition at line <a class="el" href="artefacts__util_8cpp_source.html#l00165">165</a> of file <a class="el" href="artefacts__util_8cpp_source.html">artefacts_util.cpp</a>.</p>
 <div class="dynheader">
 Here is the call graph for this function:</div>
 <div class="dyncontent">

pe__sieve_8cpp_source.html

@@ -400,7 +400,7 @@
 <div class="ttc" id="aconsole__color_8h_html"><div class="ttname"><a href="console__color_8h.html">console_color.h</a></div></div>
 <div class="ttc" id="aformat__util_8h_html"><div class="ttname"><a href="format__util_8h.html">format_util.h</a></div></div>
 <div class="ttc" id="anamespacepesieve_1_1matcher_html_a1219264b984e5f20ac9931e1b657ecdf"><div class="ttname"><a href="namespacepesieve_1_1matcher.html#a1219264b984e5f20ac9931e1b657ecdf">pesieve::matcher::load_pattern_file</a></div><div class="ttdeci">size_t load_pattern_file(const char *filename)</div><div class="ttdef"><b>Definition</b> <a href="artefacts__util_8cpp_source.html#l00148">artefacts_util.cpp:148</a></div></div>
-<div class="ttc" id="anamespacepesieve_1_1matcher_html_af2abc59fa1094c4adc610238da632762"><div class="ttname"><a href="namespacepesieve_1_1matcher.html#af2abc59fa1094c4adc610238da632762">pesieve::matcher::init_shellcode_patterns</a></div><div class="ttdeci">bool init_shellcode_patterns()</div><div class="ttdef"><b>Definition</b> <a href="artefacts__util_8cpp_source.html#l00162">artefacts_util.cpp:162</a></div></div>
+<div class="ttc" id="anamespacepesieve_1_1matcher_html_af2abc59fa1094c4adc610238da632762"><div class="ttname"><a href="namespacepesieve_1_1matcher.html#af2abc59fa1094c4adc610238da632762">pesieve::matcher::init_shellcode_patterns</a></div><div class="ttdeci">bool init_shellcode_patterns()</div><div class="ttdef"><b>Definition</b> <a href="artefacts__util_8cpp_source.html#l00165">artefacts_util.cpp:165</a></div></div>
 <div class="ttc" id="anamespacepesieve_1_1util_html"><div class="ttname"><a href="namespacepesieve_1_1util.html">pesieve::util</a></div><div class="ttdef"><b>Definition</b> <a href="artefact__scanner_8cpp_source.html#l00012">artefact_scanner.cpp:12</a></div></div>
 <div class="ttc" id="anamespacepesieve_1_1util_html_a044815a9c18988fac3b62e13196145a7"><div class="ttname"><a href="namespacepesieve_1_1util.html#a044815a9c18988fac3b62e13196145a7">pesieve::util::make_minidump</a></div><div class="ttdeci">bool make_minidump(DWORD pid, const std::string &amp;out_file)</div><div class="ttdef"><b>Definition</b> <a href="process__minidump_8cpp_source.html#l00051">process_minidump.cpp:51</a></div></div>
 <div class="ttc" id="anamespacepesieve_1_1util_html_a0488834f09bf17273a1c1a97b4e9041b"><div class="ttname"><a href="namespacepesieve_1_1util.html#a0488834f09bf17273a1c1a97b4e9041b">pesieve::util::get_integrity_level</a></div><div class="ttdeci">process_integrity_t get_integrity_level(HANDLE hProcess)</div><div class="ttdef"><b>Definition</b> <a href="process__privilege_8cpp_source.html#l00159">process_privilege.cpp:159</a></div></div>