Package winappdbg :: Package win32 :: Module psapi
[hide private]
[frames] | no frames]

Module psapi

source code

Wrapper for psapi.dll in ctypes.

Classes [hide private]
  MODULEINFO
  LPMODULEINFO
Functions [hide private]
 
EnumDeviceDrivers() source code
 
EnumProcesses() source code
 
EnumProcessModules(hProcess) source code
 
EnumProcessModulesEx(hProcess, dwFilterFlag=0) source code
 
GetDeviceDriverBaseNameA(ImageBase) source code
 
GetDeviceDriverBaseNameW(ImageBase) source code
 
GetDeviceDriverFileNameA(ImageBase) source code
 
GetDeviceDriverFileNameW(ImageBase) source code
 
GetMappedFileNameA(hProcess, lpv) source code
 
GetMappedFileNameW(hProcess, lpv) source code
 
GetModuleFileNameExA(hProcess, hModule=None) source code
 
GetModuleFileNameExW(hProcess, hModule=None) source code
 
GetModuleInformation(hProcess, hModule, lpmodinfo=None) source code
 
GetProcessImageFileNameA(hProcess) source code
 
GetProcessImageFileNameW(hProcess) source code
Variables [hide private]
  __revision__ = '$Id: psapi.py 1299 2013-12-20 09:30:55Z qvasim...
  ERROR_NO_RECOVERY_PROGRAM = 1082
  ERROR_DBG_TERMINATE_PROCESS = 692
  ERROR_BUFFER_OVERFLOW = 111
  STANDARD_RIGHTS_WRITE = 131072
  STANDARD_RIGHTS_EXECUTE = 131072
  SYNCHRONIZE = 1048576
  ERROR_BAD_LENGTH = 24
  TRUE = 1
  ERROR_ENVVAR_NOT_FOUND = 203
  ERROR_ELEVATION_REQUIRED = 740
  ERROR_ALREADY_EXISTS = 183
  ERROR_DIFFERENT_SERVICE_ACCOUNT = 1079
  WIN32_VERBOSE_MODE = False
  ERROR_FAILED_SERVICE_CONTROLLER_CONNECT = 1063
  ERROR_NONE_MAPPED = 1332
  ERROR_NOT_SUPPORTED = 50
  ERROR_INVALID_HANDLE = 6
  ERROR_INVALID_FUNCTION = 1
  ERROR_DBG_REPLY_LATER = 689
  ERROR_MORE_DATA = 234
  ERROR_INVALID_PARAMETER = 87
  ANYSIZE_ARRAY = 1
  ERROR_FILE_EXISTS = 80
  ERROR_INVALID_DRIVE = 15
  ERROR_BAD_THREADID_ADDR = 159
  STANDARD_RIGHTS_ALL = 2031616
  ERROR_FILE_NOT_FOUND = 2
  STANDARD_RIGHTS_READ = 131072
  ERROR_DBG_CONTROL_BREAK = 696
  ERROR_WOW_ASSERTION = 670
  ERROR_NOT_ENOUGH_MEMORY = 8
  ERROR_DBG_EXCEPTION_NOT_HANDLED = 688
  ERROR_INVALID_NAME = 123
  ERROR_SERVICE_NOT_IN_EXE = 1083
  ERROR_SERVICE_NEVER_STARTED = 1077
  ERROR_INSUFFICIENT_BUFFER = 122
  MAX_MODULE_NAME32 = 255
  ERROR_HANDLE_DISK_FULL = 39
  ERROR_UNHANDLED_EXCEPTION = 574
  ERROR_INVALID_FLAG_NUMBER = 186
  ERROR_DBG_CONTINUE = 767
  ERROR_SERVICE_DEPENDENCY_FAIL = 1068
  ERROR_NOT_SAFEBOOT_SERVICE = 1084
  ERROR_ALREADY_RUNNING_LKG = 1074
  ERROR_THREAD_NOT_IN_PROCESS = 566
  ERROR_CIRCULAR_DEPENDENCY = 1059
  ERROR_CALL_NOT_IMPLEMENTED = 120
  ERROR_SERVICE_DOES_NOT_EXIST = 1060
  ERROR_DBG_PRINTEXCEPTION_C = 694
  ERROR_SERVICE_MARKED_FOR_DELETE = 1072
  MAX_PATH = 260
  WRITE_DAC = 262144
  ERROR_DBG_CONTROL_C = 693
  STANDARD_RIGHTS_REQUIRED = 983040
  ERROR_DATABASE_DOES_NOT_EXIST = 1065
  ERROR_DBG_TERMINATE_THREAD = 691
  ERROR_DEBUGGER_INACTIVE = 1284
  windll = WinDllHook()
  ERROR_PROC_NOT_FOUND = 127
  ERROR_ASSERTION_FAILURE = 668
  ERROR_INVALID_SERVICE_LOCK = 1071
  ERROR_DUPLICATE_SERVICE_NAME = 1078
  ERROR_SERVICE_LOGON_FAILED = 1069
  WRITE_OWNER = 524288
  ERROR_SERVICE_NOT_ACTIVE = 1062
  WinCallHook
  ERROR_BAD_PATHNAME = 161
  ERROR_PROCESS_ABORTED = 1067
  ERROR_PRIVILEGE_NOT_HELD = 1314
  ERROR_DBG_RIPEXCEPTION = 695
  ERROR_NOACCESS = 998
  ERROR_BAD_ARGUMENTS = 160
  ERROR_SERVICE_CANNOT_ACCEPT_CTRL = 1061
  ERROR_BOOT_ALREADY_ACCEPTED = 1076
  FALSE = 0
  INVALID_HANDLE_VALUE = 4294967295
  ERROR_DIR_NOT_EMPTY = 145
  WinFuncHook
  ERROR_DISK_FULL = 112
  WinDllHook
  ERROR_INVALID_ADDRESS = 487
  DELETE = 65536
  ERROR_FILENAME_EXCED_RANGE = 206
  ERROR_NO_MORE_FILES = 18
  ERROR_SERVICE_SPECIFIC_ERROR = 1066
  ERROR_DBG_COMMAND_EXCEPTION = 697
  ERROR_HANDLE_EOF = 38
  NULL = None
hash(x)
  ERROR_SERVICE_DEPENDENCY_DELETED = 1075
  ERROR_CANNOT_DETECT_PROCESS_ABORT = 1081
  ERROR_SEM_TIMEOUT = 121
  ERROR_ACCESS_DENIED = 5
  ERROR_PATH_NOT_FOUND = 3
  ERROR_EXCEPTION_IN_SERVICE = 1064
  ERROR_SUCCESS = 0
  SPECIFIC_RIGHTS_ALL = 65535
  RPC_S_SERVER_UNAVAILABLE = 1722
  ERROR_CANNOT_DETECT_DRIVER_FAILURE = 1080
  READ_CONTROL = 131072
  INFINITE = -1
  ERROR_DBG_EXCEPTION_HANDLED = 766
  ERROR_MOD_NOT_FOUND = 126
  ERROR_CONTROL_C_EXIT = 572
  WAIT_TIMEOUT = 258
  ERROR_PARTIAL_COPY = 299
  ERROR_SERVICE_EXISTS = 1073
  ERROR_NO_MORE_ITEMS = 259
  ERROR_DBG_UNABLE_TO_PROVIDE_HANDLE = 690
  ERROR_SERVICE_START_HANG = 1070
  LIST_MODULES_DEFAULT = 0
  LIST_MODULES_32BIT = 1
  LIST_MODULES_64BIT = 2
  LIST_MODULES_ALL = 3
  GetDeviceDriverBaseName = GuessStringType(GetDeviceDriverBaseN...
  GetDeviceDriverFileName = GuessStringType(GetDeviceDriverFileN...
  GetMappedFileName = GuessStringType(GetMappedFileNameA, GetMap...
  GetModuleFileNameEx = GuessStringType(GetModuleFileNameExA, Ge...
  GetProcessImageFileName = GuessStringType(GetProcessImageFileN...
  _all = set(['EnumDeviceDrivers', 'EnumProcessModules', 'EnumPr...
  __package__ = 'winappdbg.win32'
  _x = 'GetProcessImageFileNameA'
Variables Details [hide private]

__revision__

Value:
'$Id: psapi.py 1299 2013-12-20 09:30:55Z qvasimodo $'

GetDeviceDriverBaseName

Value:
GuessStringType(GetDeviceDriverBaseNameA, GetDeviceDriverBaseNameW)

GetDeviceDriverFileName

Value:
GuessStringType(GetDeviceDriverFileNameA, GetDeviceDriverFileNameW)

GetMappedFileName

Value:
GuessStringType(GetMappedFileNameA, GetMappedFileNameW)

GetModuleFileNameEx

Value:
GuessStringType(GetModuleFileNameExA, GetModuleFileNameExW)

GetProcessImageFileName

Value:
GuessStringType(GetProcessImageFileNameA, GetProcessImageFileNameW)

_all

Value:
set(['EnumDeviceDrivers',
     'EnumProcessModules',
     'EnumProcessModulesEx',
     'EnumProcesses',
     'GetDeviceDriverBaseName',
     'GetDeviceDriverBaseNameA',
     'GetDeviceDriverBaseNameW',
     'GetDeviceDriverFileName',
...