代码库

Scans a given process. Recognizes and dumps a variety of potentially malicious implants (replaced/injected PEs, shellcodes, hooks, in-memory patches).

C++

anti-malwarehookinglibpeconvmalware-analysismemory-forensicspe-analyzerpe-dumperpe-formatpe-sieveprocess-analyzerscans

hasherezade/exe_to_dll

1.4k

Converts a EXE into DLL

C++

hasherezade/tiny_tracer

1.6k

A Pin Tool for tracing API calls etc

C++

api-tracedbiintel-pintoolsmalware-analysisreverse-engineering