Panoptes
1.0.0
Endpoint Detection and Response
Loading...
Searching...
No Matches
src
extensibility
PanoptesAMSI
test
Test_PanoptesAMSI.cpp
Go to the documentation of this file.
1
#include "gtest/gtest.h"
2
#include "
PanoptesAMSI.h
"
3
4
namespace
AMSI
{
5
TEST
(AMSIScan, ScanFileCopy) {
6
int
result
= -1;
7
AmsiScanner::AmsiScanFile
(
"C:\\Windows\\System32\\notepad.exe"
,
"C:\\Windows\\Temp\\notepad2.exe"
, &
result
);
8
EXPECT_EQ(
result
, 1);
9
}
10
11
TEST
(AMSIScan, ScanFileNoCopy) {
12
int
result
= -1;
13
AmsiScanner::AmsiScanFile
(
"C:\\Windows\\System32\\notepad.exe"
,
""
, &
result
);
14
EXPECT_EQ(
result
, 1);
15
}
16
}
PanoptesAMSI.h
AmsiScanner::AmsiScanFile
static HRESULT AmsiScanFile(std::string PathToFile, std::string CopyPath, int *AmsiResult)
Scan a file using Windows built in AMSI feature set.
Definition
amsi-scan.cpp:10
result
ULONG result
Definition
events.cpp:22
AMSI
Definition
Test_PanoptesAMSI.cpp:4
AMSI::TEST
TEST(AMSIScan, ScanFileCopy)
Definition
Test_PanoptesAMSI.cpp:5
Generated by
1.9.8
1.9.8