Scans a given process. Recognizes and dumps a variety of potentially malicious implants (replaced/injected PEs, shellcodes, hooks, in-memory patches).
Why do you think that https://github.com/hasherezade/mal_unpack is a good alternative to pe-sieve
Scans a given process. Recognizes and dumps a variety of potentially malicious implants (replaced/injected PEs, shellcodes, hooks, in-memory patches).
Why do you think that https://github.com/hasherezade/mal_unpack is a good alternative to pe-sieve