blob: fbad0b9c2899c87b17b1e81fa547522245de439b (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
|
<?xml version="1.0" encoding="utf-8" ?>
<Configuration>
<ViewDefinitions>
<View>
<Name>ProcessModuleTraceView</Name>
<ViewSelectedBy>
<TypeName>LOADED_MODULE</TypeName>
</ViewSelectedBy>
<ListControl>
<ListEntries>
<ListEntry>
<ListItems>
<ListItem>
<PropertyName>TimeCreated</PropertyName>
</ListItem>
<ListItem>
<PropertyName>ProcessId</PropertyName>
</ListItem>
<ListItem>
<PropertyName>FileName</PropertyName>
</ListItem>
<ListItem>
<Label>ImageBase</Label>
<ScriptBlock>"0x$($_.ImageBase.ToString("X$([IntPtr]::Size * 2)"))"</ScriptBlock>
</ListItem>
<ListItem>
<PropertyName>ImageSize</PropertyName>
<FormatString>0x{0:X8}</FormatString>
</ListItem>
</ListItems>
</ListEntry>
</ListEntries>
</ListControl>
</View>
</ViewDefinitions>
</Configuration>
|