hasherezade / hollows_hunter翻译 / 编辑

最近提交:3月前
创建时间:2018.01.12

语言构成

C++90.4%
CMake9.6%

README

hollows_hunter

Build status License GitHub release Github All Releases

Scans all running processes. Recognizes and dumps a variety of potentially malicious implants (replaced/implanted PEs, shellcodes, hooks, in-memory patches).

Uses PE-sieve (DLL version): https://github.com/hasherezade/pe-sieve.git

Clone:

Use recursive clone to get the repo together with all the submodules:

git clone --recursive https://github.com/hasherezade/hollows_hunter.git

讨论区

说说你的看法