pe-sieve

There are 3 repositories under pe-sieve topic.

  • hasherezade/pe-sieve

    Scans a given process. Recognizes and dumps a variety of potentially malicious implants (replaced/injected PEs, shellcodes, hooks, in-memory patches).

    Language:C++2.9k10190417

  • hasherezade/hollows_hunter

    Scans all running processes. Recognizes and dumps a variety of potentially malicious implants (replaced/implanted PEs, shellcodes, hooks, in-memory patches).

    Language:C1.9k6415249

  • hasherezade/mal_unpack

    Dynamic unpacker based on PE-sieve

    Language:C64029364