Muninn 1.0.0
Loading...
Searching...
No Matches
Muninn::Models Namespace Reference

Classes

class  Vector
struct  ModuleEntry
 MODULEENTRY32W, Tlhelp32.h data. More...
struct  ThreadEntry
 THREADENTRY32 @ Tlhelp32.h data. More...
struct  HandleEntry
 PSS_HANDLE_ENTRY @ processsnapshot.h data. More...
struct  PrivilegeEntry
 TOKEN_PRIVILEGES @ winnt.h data. More...
struct  AccessToken
 Data for process access token information. More...
struct  ProcessEntry
 PROCESSENTRY32W @ Tlhelp32.h. More...
struct  ProcessObject
struct  SystemObject

Enumerations

enum class  KernelModuleFlags : DWORD {
  PackagedBinary = 0b1UL << 0 , MarkedForRemoval = 0b1UL << 1 , ImageDll = 0b1UL << 2 , LoadNotificationsSent = 0b1UL << 3 ,
  TelemetryEntryProcessed = 0b1UL << 4 , ProcessStaticImport = 0b1UL << 5 , InLegacyLists = 0b1UL << 6 , InIndexes = 0b1UL << 7 ,
  ShimDll = 0b1UL << 8 , InExceptionTable = 0b1UL << 9 , VerifierProvider = 0b1UL << 10 , ShimEngineCalloutSent = 0b1UL << 11 ,
  LoadInProgress = 0b1UL << 12 , LoadConfigProcessed = 0b1UL << 13 , EntryProcessed = 0b1UL << 14 , ProtectDelayLoad = 0b1UL << 15 ,
  AuxIatCopyPrivate = 0b1UL << 16 , ReservedFlags3 = 0b1UL << 17 , DontCallForThreads = 0b1UL << 18 , ProcessAttachCalled = 0b1UL << 19 ,
  ProcessAttachFailed = 0b1UL << 20 , ScpInExceptionTable = 0b1UL << 21 , CorImage = 0b1UL << 22 , DontRelocate = 0b1UL << 23 ,
  CorILOnly = 0b1UL << 24 , ChpeImage = 0b1UL << 25 , ChpeEmulatorImage = 0b1UL << 26 , ReservedFlags5 = 0b1UL << 27 ,
  Redirected = 0b1UL << 28 , ReservedFlags6 = 0b11UL << 29 , CompatDatabaseProcessed = 0b1UL << 31
}
 Flags struct @ LDR_DATA_TABLE_ENTRY, ntdll.h. More...
enum class  NativeThreadBasePriority : KPRIORITY {
  Idle = 0L , Lowest = 1L , BelowNormal = 2L , Normal = 8L ,
  AboveNormal = 10L , Highest = 15L , TimeCritical = 31L , Unknown = 0xFF
}
enum class  UserHandleObjectType : uint8_t {
  Unknown = 0 , Process = 1 , Thread = 2 , Mutant = 3 ,
  Event = 4 , Section = 5 , Semaphore = 6
}
 This is a specific structure for user object handles, not native handles. More...
enum class  ArchitectureType : uint8_t { Unknown , x86 , x64 }

Enumeration Type Documentation

◆ ArchitectureType

enum class Muninn::Models::ArchitectureType : uint8_t
strong
Enumerator
Unknown 
x86 
x64 

◆ KernelModuleFlags

enum class Muninn::Models::KernelModuleFlags : DWORD
strong

Flags struct @ LDR_DATA_TABLE_ENTRY, ntdll.h.

Enumerator
PackagedBinary 
MarkedForRemoval 
ImageDll 
LoadNotificationsSent 
TelemetryEntryProcessed 
ProcessStaticImport 
InLegacyLists 
InIndexes 
ShimDll 
InExceptionTable 
VerifierProvider 
ShimEngineCalloutSent 
LoadInProgress 
LoadConfigProcessed 
EntryProcessed 
ProtectDelayLoad 
AuxIatCopyPrivate 
ReservedFlags3 
DontCallForThreads 
ProcessAttachCalled 
ProcessAttachFailed 
ScpInExceptionTable 
CorImage 
DontRelocate 
CorILOnly 
ChpeImage 
ChpeEmulatorImage 
ReservedFlags5 
Redirected 
ReservedFlags6 
CompatDatabaseProcessed 

◆ NativeThreadBasePriority

enum class Muninn::Models::NativeThreadBasePriority : KPRIORITY
strong
Enumerator
Idle 
Lowest 
BelowNormal 
Normal 
AboveNormal 
Highest 
TimeCritical 
Unknown 

◆ UserHandleObjectType

enum class Muninn::Models::UserHandleObjectType : uint8_t
strong

This is a specific structure for user object handles, not native handles.

Native object handles, UCHAR ObjectTypeIndex @ OBJECT_TYPE_INFORMATION.

The ObjectTypeIndex may be subject to change accross Windows versions.

Enumerator
Unknown 
Process 
Thread 
Mutant 
Event 
Section 
Semaphore