pe-sieve · GitHub Topics | GitHub 中文社区

Scans a given process. Recognizes and dumps a variety of potentially malicious implants (replaced/injected PEs, shellcodes, hooks, in-memory patches).

翻译 - 扫描给定的进程。识别并转储各种潜在的恶意植入物（替换/注入的PE，shellcode，hook，内存中的修补程序）。

pe-format hooking pe-dumper pe-analyzer libpeconv process-analyzer scans anti-malware pe-sieve malware-analysis

C++3.11 k

17 天前

hollows_hunter

hasherezade@hasherezade

Scans all running processes. Recognizes and dumps a variety of potentially malicious implants (replaced/implanted PEs, shellcodes, hooks, in-memory patches).

翻译 - 扫描所有正在运行的进程。识别并转储各种潜在的恶意植入（替换/植入的 PE、shellcode、挂钩、内存中的补丁）。

pe-sieve anti-malware malware-analysis malware-detection memory-forensics

C2.04 k

17 天前