Processed through Paypal
No account required.
Donate Bitcoin to this wallet:
Donate Ethereum to this wallet:
Donate Litecoin to this wallet:
|File - Download hollows_hunter v0.2.5|
FYI, always scroll to the bottom of the page to download files on OlderGeeks.com.
We don't believe in fake/misleading download buttons and tricks. The link is always in the same place.
Scans all running processes. Recognizes and dumps a variety of potentially malicious implants (replaced/implanted PEs, shellcodes, hooks, in-memory patches).
Hollows Hunter allows you to scan your full system, searching for potentially malicious implants, and extract them for further analysis.
It is an application based on PE-sieve (DLL version), so there is a big overlap of the features between those two. They have a similar command-line interface, but while PE-sieve is an engine dedicated to scanning a single process, Hollows Hunter offers many additional features and filters on the top of this base. More information about similarities and differences described here.
Start by familiarizing yourself with PE-sieve by reading the PE-sieve's Wiki.
This download is for the 64bit version. If you need the 32bit version, download here.
Added dump reports (dump_report.json)
Renamed scan report (from report.json to scan_report.json)
Added parameter: /mignore <modules> - to exclude defined list of modules form the scan
Fixed bug in libPeConv causing incomplete import recovery
Added more patterns to recognize shellcodes
Fixed false positive in path comparison (expand relative paths before comparing)
Silence out logs in the quiet mode
Click here to visit the author's website.
Continue below to download this file.
|273||607||HASHEREZADE <img src="https://www.oldergeeks.com/downloads/gallery/thumbs/hollowshunter1_th.png"border="0">||Mar 09, 2020 - 11:46||0.2.5||400.9KB||ZIP||, out of 3 Votes.|
→→ Download Now ←← - Click to Rate File -
Like this download? Share it on Twitter → Tweet