Skip to content

5. API

Jump to bottom
hasherezade edited this page Jun 16, 2020 · 25 revisions

PE-sieve (DLL version) exposes a small API.
In order to use it in your projects you need to include the following headers:

Currently, 3 functions are exported:

PE-sieve DLL exports

Their definitions are in the header pe-sieve/include/pe_sieve_api.h:

void PESIEVE_API __stdcall PESieve_help(void);
DWORD PESIEVE_API __stdcall PESieve_version(void);
PEsieve_report PESIEVE_API PESieve_scan(PEsieve_params args);

PESieve_help

header:

void PESIEVE_API __stdcall PESieve_help(void);

role: information

  • Shows a MessageBox with the informations about PE-sieve.

PESieve_version

header:

DWORD PESIEVE_API __stdcall PESieve_version(void);

role : information

PESieve_scan

header:

PEsieve_report PESIEVE_API PESieve_scan(PEsieve_params args);

role : scan

  • Performs a PE-sieve scan with a supplied set of parameters (defined as a structure t_params). Returns a summary of the scan in a variable of type t_report.

PE-sieve Wiki, by hasherezade

Clone this wiki locally