Home       Trees       Indices       Help   
WinAppDbg - Programming Reference
Package winappdbg :: Module breakpoint :: Class _Hook_amd64
[hide private]
[frames] | no frames]

Class _Hook_amd64

source code

Implementation details for Hook on the win32.ARCH_AMD64 architecture.

Instance Methods [hide private]
a new object with type S, a subtype of T
__new__(T, S, ...)
 
_calc_signature(self, signature) source code
 
_get_return_address(self, aProcess, aThread) source code
 
_get_function_arguments(self, aProcess, aThread) source code
 
_get_arguments_from_buffer(self, buffer, structure) source code
 
_get_return_value(self, aThread) source code
 
__call__(self, event)
Handles the breakpoint event on entry of the function. (Inherited from winappdbg.breakpoint.Hook)		 source code
 
__init__(self, preCB=None, postCB=None, paramCount=None, signature=None, arch=None)
x.__init__(...) initializes x; see help(type(x)) for signature (Inherited from winappdbg.breakpoint.Hook)		 source code
 
_cast_signature_pointers_to_void(self, signature) (Inherited from winappdbg.breakpoint.Hook) source code
tuple( arg, arg, arg... )
get_params(self, tid)
Returns the parameters found in the stack when the hooked function was last called by this thread. (Inherited from winappdbg.breakpoint.Hook)		 source code
list of tuple( arg, arg, arg... )
get_params_stack(self, tid)
Returns the parameters found in the stack each time the hooked function was called by this thread and hasn't returned yet. (Inherited from winappdbg.breakpoint.Hook)		 source code
 
hook(self, debug, pid, address)
Installs the function hook at a given process and address. (Inherited from winappdbg.breakpoint.Hook)		 source code
 
unhook(self, debug, pid, address)
Removes the function hook at a given process and address. (Inherited from winappdbg.breakpoint.Hook)		 source code

Inherited from object: __delattr__, __format__, __getattribute__, __hash__, __reduce__, __reduce_ex__, __repr__, __setattr__, __sizeof__, __str__, __subclasshook__

Class Variables [hide private]
  __float_types = ctypes.c_double, ctypes.c_float,
  _Hook_amd64__float_types = (<class 'ctypes.c_double'>, <class ...
bool useHardwareBreakpoints = False
True to try to use hardware breakpoints, False otherwise. (Inherited from winappdbg.breakpoint.Hook)
Properties [hide private]

Inherited from object: __class__

Method Details [hide private]

__new__(T, S, ...)

 
Returns: a new object with type S, a subtype of T
Overrides: object.__new__

_calc_signature(self, signature)

source code 
Overrides: Hook._calc_signature

_get_return_address(self, aProcess, aThread)

source code 
Overrides: Hook._get_return_address

_get_function_arguments(self, aProcess, aThread)

source code 
Overrides: Hook._get_function_arguments

_get_return_value(self, aThread)

source code 
Overrides: Hook._get_return_value

Class Variable Details [hide private]

_Hook_amd64__float_types

Value:
(<class 'ctypes.c_double'>,
 <class 'ctypes.c_float'>,
 <class 'ctypes.c_double'>)

   Home       Trees       Indices       Help   
WinAppDbg - Programming Reference
Generated by Epydoc 3.0.1 on Fri Dec 20 17:54:50 2013 http://epydoc.sourceforge.net