Trait WalkerPlugin 

pub trait WalkerPlugin: Send + Sync {
    // Required methods
    fn name(&self) -> &str;
    fn probe<P: PhysicalMemoryProvider>(&self, reader: &ObjectReader<P>) -> u8;
    fn processes<P: PhysicalMemoryProvider>(
        &self,
        reader: &ObjectReader<P>,
    ) -> Result<Vec<ProcessInfo>>;
    fn connections<P: PhysicalMemoryProvider>(
        &self,
        reader: &ObjectReader<P>,
    ) -> Result<Vec<ConnectionInfo>>;
    fn modules<P: PhysicalMemoryProvider>(
        &self,
        reader: &ObjectReader<P>,
    ) -> Result<Vec<ModuleInfo>>;
}

A plugin that walks Linux kernel data structures.

Implementations provide specific enumeration logic (processes, connections, modules) using an ObjectReader for memory access.

Required Methods

fn name(&self) -> &str

Human-readable name of this walker.

fn probe<P: PhysicalMemoryProvider>(&self, reader: &ObjectReader<P>) -> u8

Probe whether this walker can operate on the current memory image. Returns a confidence score 0-100.

fn processes<P: PhysicalMemoryProvider>( &self, reader: &ObjectReader<P>, ) -> Result<Vec<ProcessInfo>>

Enumerate running processes.

fn connections<P: PhysicalMemoryProvider>( &self, reader: &ObjectReader<P>, ) -> Result<Vec<ConnectionInfo>>

Enumerate network connections.

fn modules<P: PhysicalMemoryProvider>( &self, reader: &ObjectReader<P>, ) -> Result<Vec<ModuleInfo>>

Enumerate loaded kernel modules.

Dyn Compatibility

This trait is not dyn compatible.

In older versions of Rust, dyn compatibility was called "object safety".

Implementors