Bitdefender Hypervisor Memory Introspection
|
Event structure for agent injection and termination. More...
#include <intro_types.h>
Data Fields | |
AGENT_EVENT_TYPE | Event |
The type of the agent. More... | |
DWORD | AgentTag |
Unique agent tag. See INTRO_DEP_AG_TAGS. More... | |
DWORD | ErrorCode |
The error code of the event. Success is 0. More... | |
INTRO_PROCESS | CurrentProcess |
The agent process. More... | |
union { | |
AGENT_REM_EVENT RemediationEvent | |
Remediation tool event. More... | |
AGENT_LGT_EVENT LogGatherEvent | |
Log gather tool event. More... | |
}; | |
State/agent specific information. More... | |
Event structure for agent injection and termination.
Definition at line 2182 of file intro_types.h.
union { ... } |
State/agent specific information.
Fields must be used depending on the AgentTag and are invalid if Event is not agentMessage.
DWORD _EVENT_AGENT_EVENT::AgentTag |
Unique agent tag. See INTRO_DEP_AG_TAGS.
Definition at line 2185 of file intro_types.h.
Referenced by IntAgentHandleLogGatherVmcall(), IntAgentHandleRemediationVmcall(), IntLixAgentHandleUserVmcall(), IntLixAgentSendEvent(), IntLixTaskSendAgentEvent(), and IntWinProcSendAgentEvent().
INTRO_PROCESS _EVENT_AGENT_EVENT::CurrentProcess |
The agent process.
Pid, Cr3 and ImageName are not valid for agentInjected and agentTerminated events, as there is no active agent process in those phases.
Definition at line 2192 of file intro_types.h.
Referenced by IntAgentHandleLogGatherVmcall(), IntAgentHandleRemediationVmcall(), IntLixTaskSendAgentEvent(), and IntWinProcSendAgentEvent().
DWORD _EVENT_AGENT_EVENT::ErrorCode |
The error code of the event. Success is 0.
Definition at line 2186 of file intro_types.h.
Referenced by IntAgentHandleLogGatherVmcall(), IntAgentHandleRemediationVmcall(), IntLixAgentHandleUserVmcall(), IntLixAgentSendEvent(), IntLixTaskSendAgentEvent(), and IntWinProcSendAgentEvent().
AGENT_EVENT_TYPE _EVENT_AGENT_EVENT::Event |
The type of the agent.
Definition at line 2184 of file intro_types.h.
Referenced by IntAgentHandleLogGatherVmcall(), IntAgentHandleRemediationVmcall(), IntLixAgentHandleUserVmcall(), IntLixAgentSendEvent(), IntLixTaskSendAgentEvent(), IntWinAgentHandleDriverVmcall(), and IntWinProcSendAgentEvent().
AGENT_LGT_EVENT _EVENT_AGENT_EVENT::LogGatherEvent |
Log gather tool event.
Valid only if AgentTag is INTRO_AGENT_TAG_LOG_GATHER_TOOL.
Definition at line 2206 of file intro_types.h.
Referenced by IntAgentHandleLogGatherVmcall().
AGENT_REM_EVENT _EVENT_AGENT_EVENT::RemediationEvent |
Remediation tool event.
Valid only if AgentTag is INTRO_AGENT_TAG_REMEDIATION_TOOL or INTRO_AGENT_TAG_REMEDIATION_TOOL_LINUX.
Definition at line 2202 of file intro_types.h.
Referenced by IntAgentHandleRemediationVmcall().