 |
PE-sieve
Scans all running processes. Recognizes and dumps a variety of potentially malicious implants (replaced/implanted PEs, shellcodes, hooks, in-memory patches).
|
Loading...
Searching...
No Matches
|
PE-sieve
Scans all running processes. Recognizes and dumps a variety of potentially malicious implants (replaced/implanted PEs, shellcodes, hooks, in-memory patches).
|
Directories | |
| imp_rec | |
Files | |
| dump_report.cpp | |
| dump_report.h | |
| pe_buffer.cpp | |
| pe_buffer.h | |
| pe_reconstructor.cpp | |
| pe_reconstructor.h | |
| report_formatter.cpp | |
| report_formatter.h | |
| results_dumper.cpp | |
| results_dumper.h | |
1.16.1