process-analyzer
There are 3 repositories under process-analyzer topic.
hasherezade/pe-sieve
Scans a given process. Recognizes and dumps a variety of potentially malicious implants (replaced/injected PEs, shellcodes, hooks, in-memory patches).
ignacioj/WhacAMole
Live memory analysis detecting malware IOCs in processes, modules, handles, tokens, threads, .NET assemblies, memory address space and environment variables. Dumps, detects and dissasemble hooks, shellcode, memory regions, modules and processes.
juliusgutierrez/process-analyzer-exam
Analyze a TSV file to find ID with highest consumption between start time and end time