Mastodawn

hasherezade Dec 14, 2024

Now you can use #HollowsHunter it in the classic mode, as well as in ETW mode - as a multi-threaded listener.

hasherezade Dec 14, 2024

New #PEsieve
& #HollowsHunter (v0.4.0) are released: https://github.com/hasherezade/pe-sieve/releases & https://github.com/hasherezade/hollows_hunter/releases - A lot has changed in the new version, check it out!

Releases · hasherezade/pe-sieve

Scans a given process. Recognizes and dumps a variety of potentially malicious implants (replaced/injected PEs, shellcodes, hooks, in-memory patches). - hasherezade/pe-sieve

GitHub

buherator Jun 19, 2019

RT @[email protected]

New releases: #PEsieve 0.2.1 (https://github.com/hasherezade/pe-sieve/releases/tag/v0.2.1) & #HollowsHunter 0.2.2.5 (https://github.com/hasherezade/hollows_hunter/releases/tag/v0.2.2.5 ) - with some important bugfixes & more

hasherezade/pe-sieve

Scans a given process. Recognizes and dumps a variety of potentially malicious implants (replaced/injected PEs, shellcodes, hooks, in-memory patches). - hasherezade/pe-sieve

buherator May 23, 2019

RT @[email protected]

New #PEsieve (https://github.com/hasherezade/pe-sieve/releases/tag/v0.1.8) and #HollowsHunter (https://github.com/hasherezade/hollows_hunter/releases/tag/v0.2.1) are ready!

hasherezade/pe-sieve

Scans a given process. Recognizes and dumps a variety of potentially malicious implants (replaced/injected PEs, shellcodes, hooks, in-memory patches). - hasherezade/pe-sieve