How to use the minidump.win_datatypes.POINTER function in minidump
To help you get started, we’ve selected a few minidump examples, based on popular ways it is used in public projects.
Secure your code as it's written. Use Snyk Code to scan source code in minutes - no build needed - and fix issues immediately.
skelsec / minidump / minidump / win_datatypes.py View on Github 
def __init__(self, reader):
self.value = int.from_bytes(reader.read(4), byteorder = 'little', signed = False)
class ULONGLONG:
def __init__(self, reader):
self.value = int.from_bytes(reader.read(8), byteorder = 'little', signed = False)
class ULONG32:
def __init__(self, reader):
self.value = int.from_bytes(reader.read(4), byteorder = 'little', signed = False)
class ULONG64:
def __init__(self, reader):
self.value = int.from_bytes(reader.read(8), byteorder = 'little', signed = False)
class PWSTR(POINTER):
def __init__(self, reader):
super().__init__(reader, None)
class PCHAR(POINTER):
def __init__(self, reader):
super().__init__(reader, CHAR)
class USHORT:
def __init__(self, reader):
self.value = int.from_bytes(reader.read(2), byteorder = 'little', signed = False)
class SHORT:
def __init__(self, reader):
self.value = int.from_bytes(reader.read(2), byteorder = 'little', signed = True)
#https://msdn.microsoft.com/en-us/library/windows/hardware/ff554296(v=vs.85).aspxdef __init__(self, reader, finaltype = None):
self.Flink = POINTER(reader, finaltype)
self.Blink = POINTER(reader, finaltype)def __init__(self, reader):
self.value = int.from_bytes(reader.read(8), byteorder = 'little', signed = True)
class LONG_PTR(POINTER):
def __init__(self, reader):
super().__init__(reader, LONG)
class LONG32:
def __init__(self, reader):
self.value = int.from_bytes(reader.read(8), byteorder = 'little', signed = True)
class LONG64():
def __init__(self, reader):
self.value = int.from_bytes(reader.read(8), byteorder = 'little', signed = True)
class LPARAM(POINTER):
def __init__(self, reader):
super().__init__(reader, LONG)
class LPBOOL(POINTER):
def __init__(self, reader):
super().__init__(reader, BOOL)
class LPBYTE(POINTER):
def __init__(self, reader):
super().__init__(reader, BYTE)
class ULONG:
def __init__(self, reader):
self.value = int.from_bytes(reader.read(4), byteorder = 'little', signed = False)
class ULONGLONG:self.value = reader.read_uint()
class HKL:
def __init__(self, reader):
self.value = reader.read_uint()
class HLOCAL:
def __init__(self, reader):
self.value = reader.read_uint()
class INT:
def __init__(self, reader):
self.value = reader.read_int()
class INT_PTR(POINTER):
def __init__(self, reader):
super().__init__(reader, INT)
class UINT8:
def __init__(self, reader):
self.value = int.from_bytes(reader.read(1), byteorder = 'little', signed = False)
class INT8:
def __init__(self, reader):
self.value = int.from_bytes(reader.read(1), byteorder = 'little', signed = True)
class INT16:
def __init__(self, reader):
self.value = int.from_bytes(reader.read(2), byteorder = 'little', signed = True)
class INT32:def __init__(self, reader):
self.value = int.from_bytes(reader.read(2), byteorder = 'little', signed = True)
#https://msdn.microsoft.com/en-us/library/windows/hardware/ff554296(v=vs.85).aspx
class LIST_ENTRY:
def __init__(self, reader, finaltype = None):
self.Flink = POINTER(reader, finaltype)
self.Blink = POINTER(reader, finaltype)
class FILETIME:
def __init__(self, reader):
self.dwLowDateTime = DWORD(reader)
self.dwHighDateTime = DWORD(reader)
self.value = (self.dwHighDateTime.value << 32) + self.dwLowDateTime.value
class PUCHAR(POINTER):
def __init__(self, reader):
super().__init__(reader, UCHAR)
class PCWSTR(POINTER):
def __init__(self, reader):
super().__init__(reader, None)
class SIZE_T:
def __init__(self, reader):
self.value = reader.read_uint()def __init__(self, reader):
super().__init__(reader, None) #with void we cannot determine the final type
class BOOL:
def __init__(self, reader):
self.value = bool(reader.read_uint())
class BOOLEAN:
def __init__(self, reader):
self.value = reader.read(1)
class BYTE:
def __init__(self, reader):
self.value = reader.read(1)
class PBYTE(POINTER):
def __init__(self, reader):
super().__init__(reader, BYTE)
class CCHAR:
def __init__(self, reader):
self.value = reader.read(1).decode('ascii')
class CHAR:
def __init__(self, reader):
self.value = reader.read(1).decode('ascii')
class UCHAR:
def __init__(self, reader):
self.value = int.from_bytes(reader.read(1), byteorder = 'little', signed = False)
class WORD:def __init__(self, reader):
self.value = int.from_bytes(reader.read(8), byteorder = 'little', signed = True)
class LONG64():
def __init__(self, reader):
self.value = int.from_bytes(reader.read(8), byteorder = 'little', signed = True)
class LPARAM(POINTER):
def __init__(self, reader):
super().__init__(reader, LONG)
class LPBOOL(POINTER):
def __init__(self, reader):
super().__init__(reader, BOOL)
class LPBYTE(POINTER):
def __init__(self, reader):
super().__init__(reader, BYTE)
class ULONG:
def __init__(self, reader):
self.value = int.from_bytes(reader.read(4), byteorder = 'little', signed = False)
class ULONGLONG:
def __init__(self, reader):
self.value = int.from_bytes(reader.read(8), byteorder = 'little', signed = False)
class ULONG32:
def __init__(self, reader):
self.value = int.from_bytes(reader.read(4), byteorder = 'little', signed = False)
class ULONG64:else:
data = self.finaltype(reader)
reader.move(pos)
return data
def read_raw(self, reader, size ):
#we do not know the finaltype, just want the data
if self.value == 0:
return None
pos = reader.tell()
reader.move(self.value)
data = reader.read(size)
reader.move(pos)
return data
class PVOID(POINTER):
def __init__(self, reader):
super().__init__(reader, None) #with void we cannot determine the final type
class BOOL:
def __init__(self, reader):
self.value = bool(reader.read_uint())
class BOOLEAN:
def __init__(self, reader):
self.value = reader.read(1)
class BYTE:
def __init__(self, reader):
self.value = reader.read(1)
class PBYTE(POINTER):def __init__(self, reader):
self.value = int.from_bytes(reader.read(1), byteorder = 'little', signed = False)
class WORD:
def __init__(self, reader):
self.value = int.from_bytes(reader.read(2), byteorder = 'little', signed = False)
class DWORD:
def __init__(self, reader):
self.value = int.from_bytes(reader.read(4), byteorder = 'little', signed = False)
class DWORDLONG:
def __init__(self, reader):
self.value = int.from_bytes(reader.read(8), byteorder = 'little', signed = False)
class DWORD_PTR(POINTER):
def __init__(self, reader):
super().__init__(reader, DWORD)
class DWORD32:
def __init__(self, reader):
self.value = int.from_bytes(reader.read(4), byteorder = 'little', signed = False)
class DWORD64:
def __init__(self, reader):
self.value = int.from_bytes(reader.read(8), byteorder = 'little', signed = False)
class HANDLE:
def __init__(self, reader):
self.value = reader.read_uint()def __init__(self, reader):
self.value = int.from_bytes(reader.read(4), byteorder = 'little', signed = True)
class INT64:
def __init__(self, reader):
self.value = int.from_bytes(reader.read(8), byteorder = 'little', signed = True)
class LONG:
def __init__(self, reader):
self.value = int.from_bytes(reader.read(4), byteorder = 'little', signed = True)
class LONGLONG:
def __init__(self, reader):
self.value = int.from_bytes(reader.read(8), byteorder = 'little', signed = True)
class LONG_PTR(POINTER):
def __init__(self, reader):
super().__init__(reader, LONG)
class LONG32:
def __init__(self, reader):
self.value = int.from_bytes(reader.read(8), byteorder = 'little', signed = True)
class LONG64():
def __init__(self, reader):
self.value = int.from_bytes(reader.read(8), byteorder = 'little', signed = True)
class LPARAM(POINTER):
def __init__(self, reader):
super().__init__(reader, LONG)
class LPBOOL(POINTER):minidump
Python library to parse Windows minidump file format
Package Health Score
77 / 100Popular minidump functions
- minidump.constants.MINIDUMP_STREAM_TYPE
- minidump.directory.MINIDUMP_DIRECTORY
- minidump.directory.MINIDUMP_DIRECTORY.get_stream_type_value
- minidump.header.MinidumpHeader
- minidump.minidumpfile.MinidumpFile
- minidump.minidumpfile.MinidumpFile.parse
- minidump.minidumpfile.MinidumpFile.parse_bytes
- minidump.minidumpreader.MinidumpBufferedMemorySegment
- minidump.StreamDirectory
- minidump.streams.HandleDataStream.MinidumpHandleDescriptor
- minidump.streams.MemoryListStream.MINIDUMP_MEMORY_DESCRIPTOR.parse
- minidump.streams.MiscInfoStream.MinidumpMiscInfo2Flags1
- minidump.streams.MiscInfoStream.MinidumpMiscInfoFlags1
- minidump.streams.ModuleListStream.VS_FIXEDFILEINFO
- minidump.streams.SystemInfoStream.PROCESSOR_ARCHITECTURE
- minidump.streams.SystemInfoStream.PROCESSOR_ARCHITECTURE.AMD64
- minidump.streams.SystemInfoStream.PROCESSOR_ARCHITECTURE.INTEL
- minidump.streamType
- minidump.utils.winapi.defines.Structure
- minidump.win_datatypes.POINTER