Added heap category.

Author: KN4CK3R

Memory/NodeDissector.cs

@@ -43,11 +43,11 @@ public static Type GuessType(BaseHexNode node, MemoryBuffer memory)
 			var data32 = memory.ReadObject<UInt32FloatData>(offset);
 
 			var raw = memory.ReadBytes(offset, node.MemorySize);
-			if (raw.InterpretAsUTF8().IsLikelyPrintableData() >= 0.5f)
+			if (raw.InterpretAsUTF8().IsLikelyPrintableData() >= 0.75f)
 			{
 				return typeof(UTF8TextNode);
 			}
-			else if (raw.InterpretAsUTF16().IsLikelyPrintableData() >= 0.5f)
+			else if (raw.InterpretAsUTF16().IsLikelyPrintableData() >= 0.75f)
 			{
 				return typeof(UTF16TextNode);
 			}
@@ -120,7 +120,7 @@ private static Type GuessPointerType(IntPtr address, MemoryBuffer memory)
 				{
 					return typeof(FunctionPtrNode);
 				}
-				else if (section.Category == RemoteProcess.SectionCategory.DATA) // If the section contains data, it is at least a pointer to a class or something.
+				else if (section.Category == RemoteProcess.SectionCategory.DATA || section.Category == RemoteProcess.SectionCategory.HEAP) // If the section contains data, it is at least a pointer to a class or something.
 				{
 					// Check if it is a vtable. Check if the first 3 values are pointers to a code section.
 					bool valid = true;
@@ -140,11 +140,11 @@ private static Type GuessPointerType(IntPtr address, MemoryBuffer memory)
 
 					// Check if it is a string.
 					var data = memory.Process.ReadRemoteMemory(address, IntPtr.Size * 2);
-					if (data.Take(IntPtr.Size).InterpretAsUTF8().IsLikelyPrintableData() >= 0.5f)
+					if (data.Take(IntPtr.Size).InterpretAsUTF8().IsLikelyPrintableData() >= 07.5f)
 					{
 						return typeof(UTF8TextPtrNode);
 					}
-					else if (data.InterpretAsUTF16().IsLikelyPrintableData() >= 0.5f)
+					else if (data.InterpretAsUTF16().IsLikelyPrintableData() >= 0.75f)
 					{
 						return typeof(UTF16TextPtrNode);
 					}

Memory/RemoteProcess.cs

@@ -42,7 +42,8 @@ public enum SectionCategory
 		{
 			Unknown,
 			CODE,
-			DATA
+			DATA,
+			HEAP
 		}
 
 		public class Section
@@ -407,11 +408,12 @@ public string GetNamedAddress(IntPtr address)
 			var section = GetSectionToPointer(address);
 			if (section != null)
 			{
-				if (section.Category != SectionCategory.Unknown)
+				if (section.Category == SectionCategory.CODE || section.Category == SectionCategory.DATA)
 				{
+					// Code and Data sections belong to a module.
 					return $"<{section.Category}>{section.ModuleName}.{address.ToString("X")}";
 				}
-				else if (section.Type == NativeMethods.TypeEnum.MEM_PRIVATE)
+				else if (section.Category == SectionCategory.HEAP)
 				{
 					return $"<HEAP>{address.ToString("X")}";
 				}
@@ -466,7 +468,8 @@ public Task UpdateProcessInformationsAsync()
 							Protection = protection,
 							Type = type,
 							ModulePath = modulePath,
-							ModuleName = Path.GetFileName(modulePath)
+							ModuleName = Path.GetFileName(modulePath),
+							Category = type == NativeMethods.TypeEnum.MEM_PRIVATE ? SectionCategory.HEAP : SectionCategory.Unknown
 						};
 						switch (section.Name)
 						{