hasherezade/pe-sieve
Scans a given process. Recognizes and dumps a variety of potentially malicious implants (replaced/injected PEs, shellcodes, hooks, in-memory patches).
C++BSD-2-Clause
Stargazers
- 0xFA15E5ECThe Rubicon Advisory Group
- 7heavenAlibaba
- amurruAmuru Kingdom
- ant1
- binaryflesh
- binbibi
- BlackLuny
- cydiakk
- DaTrollMon
- ddwhan0123China.ShangHai
- etheavenSelf employed
- firstblade
- galaris
- googijh
- hexabin
- houps
- jheidt@effectualinc
- killvxkUSSR
- klase1337
- leexia
- maldevel@Logisek
- mattheckHeckmann Technology
- mayl8822
- mhanne0915
- mq1nTurkey
- orzIruoBoss Under The OverPass
- p3nt4localhost
- peta909Singapore
- qwerty12
- RikettaRussia
- saeschdivara
- ShawnAlexander
- stonedreamforest
- syr0xToronto
- techvoltage
- yangfan6888