hasherezade/pe-sieve
Scans a given process. Recognizes and dumps a variety of potentially malicious implants (replaced/injected PEs, shellcodes, hooks, in-memory patches).
C++BSD-2-Clause
Watchers
- akpotter
- Cilo
- dijitalxyz
- DMMCAVatican City
- dmoreAvailable
- dnidesChicago
- evandrixUndisclosed
- fengjixuchui
- fmmarques
- GenRockeR
- happydpc
- hasherezadePoland
- IsraelTorresIrvine, CA, USA
- jhcloos
- jjjan
- kilger
- kilitaryUmbrella CorporatIon. Axis9 divISion. SKYneT sub-sector. RQ-ruled entrance..
- KINGSABRI
- krzyskoTichau
- ldh0227Trellix
- luastonedAustria
- manurautelaIndia
- mlinton
- Neustradamus
- notdetectdev
- panicos
- qrealkaHuawei Research Lab
- rfrfrf
- sciguyryanWales, UK
- showi
- silverskyvictoRicksoft Co., Ltd.
- simasjVilnius, Lithuania
- trietptmTRIETPTM INFOSEC
- u0m3Bucharest, Romania
- unknown70
- wjcsharp