Fixed missing Usage.txt bug

Author: forrest-orr

.gitignore

@@ -1,8 +1,6 @@
 
 *.tlog
 *.lastbuildstate
-*.tlog
-*.tlog
 *.db
 .vs/Moneta/v16/Browse.VC.opendb
 *.ipch
@@ -13,46 +11,25 @@ x64/Release/Moneta.ipdb
 *.log
 x64/Release/Moneta.log
 *.pdb
-x64/Release/Moneta.pdb
-*.iobj
-*.iobj
 *.ipdb
 *.iobj
 *.tlog
-*.tlog
 *.pdb
-x64/Release/vc142.pdb
-*.tlog
-*.tlog
 *.log
 *.log
 *.obj
 *.iobj
-*.log
-*.iobj
-*.iobj
 *.ipdb
 *.log
 *.tlog
-*.tlog
 *.pdb
 *.tlog
-x64/Release/Moneta.exe
 *.lock
 *.ide-shm
 *.cache
 *.dat
 *.exe
-*.exe
-*.exe
-*.exe
-*.exe
 *.idb
 *.ilk
-*.txt
-*.txt
-*.txt
 *.db-wal
-*.db-wal
-*.db-shm
 *.db-shm

Resources/Usage.txt

@@ -0,0 +1,48 @@
+REQUIRED
+
+-m {*|region|referenced|ioc}
+-p {*|PID}
+
+OPTIONAL
+
+-v {detail|debug|surface}
+-d
+--option {from-base|statistics}
+--filter {unsigned-module|clr-prvx|clr-heap|metadata-modules}
+--address <memory address>
+--region-size <memory region size>
+
+
+-m                  The memory to select and apply scanner settings to.
+
+                    *                   Select all regions of committed memory.
+                    ioc                 Select only regions which have suspicions associated with them.
+                    region              Select only the region(s) which overlap with the region provided
+                                        through the --address and --region-size arguments.
+                    referenced          Select only regions which are referenced within the region(s)
+                                        associated with the provided --address and --region-size arguments
+-p                  The process(es) to scan. In the event that * is used, all accessible processes will
+                    be enumerated and scanned.
+--option            Additional actions to optionally apply to the memory selected from the scan.
+
+                    from-base           All subregions associated with the allocation bases of all
+                                        selected memory will also be selected.
+                    statistics          Calculate permission statistics on the selected memory after a
+                                        scan has completed.
+-d                  Dump all selected memory to the local file system after each process scan is complete.
+--address           A memory address in 0x* format to be used in conjunction with either the "region" or
+                    "referenced" selection types.
+--region-size       Optionally specify the size of the region of the provided "--address." The default is
+                    a region size of 0.
+-v                  The verbosity level with which to print information related to the selected memory.
+                    The default is "surface"
+--filter            The filters to apply when eliminating suspicions associated with selected memory.
+                    
+                    *                   Apply all filters. Only malware and unknown false positives shown.
+                    unsigned-module     Regions of image memory associated with unsigned PE files.
+                    metadata-modules    Regions of image memory stemming from signed Windows metadata PE
+                                        files on disk.
+                    clr-heap            Native executable heaps created during CLR initialization.
+                    clr-prvx            Managed heaps associated with active CLR heaps and JIT code.
+                    wow64-init          IOCs resulting from Wow64 process initialization such as certain
+                                        modified system library code sections

x64/Release/Moneta.vcxproj.FileListAbsolute.txt

@@ -0,0 +1 @@
+C:\Users\Developer\Desktop\Github\moneta\x64\Release\Moneta64.exe