-
Notifications
You must be signed in to change notification settings - Fork 968
SampleTracebld
Traces the file access patterns of a process and all of its children.
Unlike the other tracing samples, Tracebld is entirely self-contained.
It includes a parent process that initiates a child process with
instrumentation and aggregates the results for the child and its
children. Output from the children is delivered to the parent process
via a named pipe created by the parent.
Source is located in the /samples/tracebld directory.
DetourAttach,
DetourAttachEx,
DetourCodeFromPointer,
DetourCopyPayloadToProcess,
DetourCreateProcessWithDllEx,
DetourDetach,
DetourEnumerateImports,
DetourEnumerateModules,
DetourFindPayload,
DetourGetEntryPoint,
DetourGetModuleSize,
DetourFinishHelperProcess,
DetourIsHelperProcess,
DetourRestoreAfterWith,
DetourTransactionBegin,
DetourTransactionCommit,
DetourUpdateThread.