Scans all running processes. Recognizes and dumps a variety of potentially malicious implants (replaced/implanted PEs, shellcodes, hooks, in-memory patches).
📦 Uses library: PE-sieve (the DLL version).
Use recursive clone to get the repo together with all the submodules:
git clone --recursive https://github.com/hasherezade/hollows_hunter.git