Python源码示例:volatility.plugins.filescan.DriverScan()
示例1
def calculate(self):
addr_space = utils.load_as(self._config)
self.apply_types(addr_space, self._config.VERSION)
scanner = filescan.DriverScan(self._config)
for driver in scanner.calculate():
drivername = str(driver.DriverName or '')
if drivername.endswith("truecrypt"):
for device in driver.devices():
code = device.DeviceType.v()
type = devicetree.DEVICE_CODES.get(code)
if type == 'FILE_DEVICE_DISK':
yield device
示例2
def __init__(self, config, *args, **kwargs):
filescan.DriverScan.__init__(self, config, *args, **kwargs)
config.add_option("REGEX", short_option = 'r', type = 'str',
action = 'store',
help = 'Analyze drivers matching REGEX')
示例3
def calculate(self):
addr_space = utils.load_as(self._config)
self.apply_types(addr_space, self._config.VERSION)
scanner = filescan.DriverScan(self._config)
for driver in scanner.calculate():
drivername = str(driver.DriverName or '')
if drivername.endswith("truecrypt"):
for device in driver.devices():
code = device.DeviceType.v()
type = devicetree.DEVICE_CODES.get(code)
if type == 'FILE_DEVICE_DISK':
yield device
示例4
def __init__(self, config, *args, **kwargs):
filescan.DriverScan.__init__(self, config, *args, **kwargs)
config.add_option("REGEX", short_option = 'r', type = 'str',
action = 'store',
help = 'Analyze drivers matching REGEX')
示例5
def calculate(self):
addr_space = utils.load_as(self._config)
self.apply_types(addr_space, self._config.VERSION)
scanner = filescan.DriverScan(self._config)
for driver in scanner.calculate():
drivername = str(driver.DriverName or '')
if drivername.endswith("truecrypt"):
for device in driver.devices():
code = device.DeviceType.v()
type = devicetree.DEVICE_CODES.get(code)
if type == 'FILE_DEVICE_DISK':
yield device
示例6
def __init__(self, config, *args, **kwargs):
filescan.DriverScan.__init__(self, config, *args, **kwargs)
config.add_option("REGEX", short_option = 'r', type = 'str',
action = 'store',
help = 'Analyze drivers matching REGEX')
示例7
def calculate(self):
addr_space = utils.load_as(self._config)
self.apply_types(addr_space, self._config.VERSION)
scanner = filescan.DriverScan(self._config)
for driver in scanner.calculate():
drivername = str(driver.DriverName or '')
if drivername.endswith("truecrypt"):
for device in driver.devices():
code = device.DeviceType.v()
type = devicetree.DEVICE_CODES.get(code)
if type == 'FILE_DEVICE_DISK':
yield device
示例8
def __init__(self, config, *args, **kwargs):
filescan.DriverScan.__init__(self, config, *args, **kwargs)
config.add_option("REGEX", short_option = 'r', type = 'str',
action = 'store',
help = 'Analyze drivers matching REGEX')
示例9
def calculate(self):
addr_space = utils.load_as(self._config)
self.apply_types(addr_space, self._config.VERSION)
scanner = filescan.DriverScan(self._config)
for driver in scanner.calculate():
drivername = str(driver.DriverName or '')
if drivername.endswith("truecrypt"):
for device in driver.devices():
code = device.DeviceType.v()
type = devicetree.DEVICE_CODES.get(code)
if type == 'FILE_DEVICE_DISK':
yield device
示例10
def __init__(self, config, *args, **kwargs):
filescan.DriverScan.__init__(self, config, *args, **kwargs)
config.add_option("REGEX", short_option = 'r', type = 'str',
action = 'store',
help = 'Analyze drivers matching REGEX')
