Bitdefender Hypervisor Memory Introspection
|
#include "introtypes.h"
Go to the source code of this file.
Functions | |
INTSTATUS | IntDepInjectProcess (DWORD AgentTag, BYTE *AgentContent, DWORD AgentSize, const CHAR *Name, const CHAR *Args) |
Injects a process inside the guest. More... | |
INTSTATUS | IntDepInjectFile (BYTE *FileContent, DWORD FileSize, const CHAR *Name) |
Inject a file inside the guest. More... | |
INTSTATUS | IntDepRunCommand (const CHAR *CommandLine) |
Run a command inside the guest. More... | |
Inject a file inside the guest.
Inject a file inside the guest. The file will be written inside the YSTEM% folder on Windows, and inside the root folder on Linux. If the file already exists, it will be overwritten, so take great care to avoid overwriting existing/system files!
[in] | FileContent | The file contents. |
[in] | FileSize | The file size. |
[in] | Name | The file name. |
INT_STATUS_SUCCESS | On success. |
INT_STATUS_NOT_SUPPORTED | If the OS is not recognized. |
Definition at line 56 of file deployer.c.
Referenced by DbgInjectFileAgent(), and IntInjectFileAgentInGuest().
INTSTATUS IntDepInjectProcess | ( | DWORD | AgentTag, |
BYTE * | AgentContent, | ||
DWORD | AgentSize, | ||
const CHAR * | Name, | ||
const CHAR * | Args | ||
) |
Injects a process inside the guest.
This function will inject the provided content inside the guest and it will run it as a process. The provided content must represent a valid executable file.
[in] | AgentTag | The agent tag. |
[in] | AgentContent | The contents of the agent. Must be a valid executable. If NULL, Introcore will check if it has the contents itself. Normally, only the killer agent and log gather tool can be injected directly by Introcore, without providing the contents. Their tags are IG_AGENT_TAG_LOG_GATHER_TOOL and IG_AGENT_TAG_AGENT_KILLER_TOOL. |
[in] | AgentSize | The size of the agent contents. |
[in] | Name | Agent name. |
[in] | Args | Optional arguments to be passed to the agent when starting it inside the guest. |
INT_STATUS_SUCCESS | On success. |
INT_STATUS_NOT_SUPPORTED | If the guest OS is not recognized. |
Definition at line 12 of file deployer.c.
Referenced by DbgInjectAgent(), and IntInjectProcessAgentInGuest().
Run a command inside the guest.
NOTE: This function can only be called for a Linux guest.
[in] | CommandLine | The command line to be executed. |
INT_STATUS_SUCCESS | On success. |
INT_STATUS_NOT_SUPPORTED | If the guest is not Linux. |
Definition at line 94 of file deployer.c.