2023-08-20 17:04:53 +02:00
|
|
|
|
using Serilog;
|
|
|
|
|
|
using System;
|
2023-08-18 10:39:21 +02:00
|
|
|
|
using System.Collections.Generic;
|
|
|
|
|
|
using System.Linq;
|
2023-08-20 11:17:03 +02:00
|
|
|
|
using System.Numerics;
|
2023-08-18 10:39:21 +02:00
|
|
|
|
using System.Runtime.InteropServices;
|
|
|
|
|
|
using System.Text;
|
|
|
|
|
|
using System.Threading.Tasks;
|
|
|
|
|
|
|
|
|
|
|
|
namespace service
|
|
|
|
|
|
{
|
|
|
|
|
|
namespace Types
|
|
|
|
|
|
{
|
2023-08-24 09:29:16 +02:00
|
|
|
|
namespace Receive
|
2023-08-18 10:39:21 +02:00
|
|
|
|
{
|
2023-08-24 09:29:16 +02:00
|
|
|
|
struct PIPE_PACKET_SEND_EXTENSION_HEADER
|
|
|
|
|
|
{
|
|
|
|
|
|
public int request_id;
|
|
|
|
|
|
public int current_packet_number;
|
|
|
|
|
|
public int total_incoming_packet_count;
|
2023-08-24 15:12:49 +02:00
|
|
|
|
public uint packet_size;
|
|
|
|
|
|
public uint total_incoming_packet_size;
|
2023-08-24 09:29:16 +02:00
|
|
|
|
};
|
2023-08-18 10:39:21 +02:00
|
|
|
|
}
|
2023-08-18 15:22:53 +02:00
|
|
|
|
|
2023-08-24 09:29:16 +02:00
|
|
|
|
namespace Reports
|
2023-08-18 15:22:53 +02:00
|
|
|
|
{
|
2023-08-24 09:29:16 +02:00
|
|
|
|
[StructLayout(LayoutKind.Sequential)]
|
|
|
|
|
|
public unsafe struct MODULE_VERIFICATION_CHECKSUM_FAILURE
|
|
|
|
|
|
{
|
|
|
|
|
|
public int ReportCode;
|
|
|
|
|
|
public UInt64 ModuleBaseAddress;
|
|
|
|
|
|
public UInt64 ModuleSize;
|
|
|
|
|
|
public fixed char ModuleName[512];
|
|
|
|
|
|
}
|
2023-08-18 15:22:53 +02:00
|
|
|
|
|
2023-08-24 09:29:16 +02:00
|
|
|
|
public struct PROCESS_THREAD_START_FAILURE
|
|
|
|
|
|
{
|
|
|
|
|
|
public int ReportCode;
|
|
|
|
|
|
public long ThreadId;
|
|
|
|
|
|
public UInt64 StartAddress;
|
|
|
|
|
|
}
|
2023-08-18 15:22:53 +02:00
|
|
|
|
|
2023-08-24 09:29:16 +02:00
|
|
|
|
public struct PAGE_PROTECTION_FAILURE
|
|
|
|
|
|
{
|
|
|
|
|
|
public int ReportCode;
|
|
|
|
|
|
public UInt64 PageBaseAddress;
|
|
|
|
|
|
public long AllocationProtection;
|
|
|
|
|
|
public long AllocationState;
|
|
|
|
|
|
public long AllocationType;
|
|
|
|
|
|
}
|
2023-08-19 11:44:42 +02:00
|
|
|
|
|
2023-08-24 09:29:16 +02:00
|
|
|
|
public struct PATTERN_SCAN_FAILURE
|
|
|
|
|
|
{
|
|
|
|
|
|
public int ReportCode;
|
|
|
|
|
|
public int SignatureId;
|
|
|
|
|
|
public UInt64 Address;
|
|
|
|
|
|
}
|
2023-08-19 11:44:42 +02:00
|
|
|
|
|
2023-08-24 09:29:16 +02:00
|
|
|
|
public struct NMI_CALLBACK_FAILURE
|
|
|
|
|
|
{
|
|
|
|
|
|
public int ReportCode;
|
|
|
|
|
|
public int WereNmisDisabled;
|
|
|
|
|
|
public UInt64 KThreadAddress;
|
|
|
|
|
|
public UInt64 InvalidRip;
|
|
|
|
|
|
}
|
2023-08-20 17:04:53 +02:00
|
|
|
|
|
2023-08-24 09:29:16 +02:00
|
|
|
|
[StructLayout(LayoutKind.Sequential)]
|
|
|
|
|
|
public unsafe struct MODULE_VALIDATION_FAILURE
|
|
|
|
|
|
{
|
|
|
|
|
|
public int ReportCode;
|
|
|
|
|
|
public int ReportType;
|
|
|
|
|
|
public long DriverBaseAddress;
|
|
|
|
|
|
public long DriverSize;
|
|
|
|
|
|
public fixed char ModuleName[128];
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
[StructLayout(LayoutKind.Sequential)]
|
|
|
|
|
|
public unsafe struct OPEN_HANDLE_FAILURE_REPORT
|
|
|
|
|
|
{
|
|
|
|
|
|
public int ReportCode;
|
|
|
|
|
|
public int IsKernelHandle;
|
|
|
|
|
|
public uint ProcessId;
|
|
|
|
|
|
public uint ThreadId;
|
|
|
|
|
|
public uint DesiredAccess;
|
|
|
|
|
|
public fixed char ProcessName[64];
|
2023-08-20 17:04:53 +02:00
|
|
|
|
|
2023-08-24 09:29:16 +02:00
|
|
|
|
}
|
2023-08-20 17:04:53 +02:00
|
|
|
|
}
|
2023-08-18 10:39:21 +02:00
|
|
|
|
}
|
|
|
|
|
|
}
|
