Hollows_Hunter is an Open Source app for advanced users that scans all running processes. It can the recognize and dump a variety of potentially malicious implants including replaced/implanted PEs, shellcodes, hooks, in-memory patches, and more.
Download
Hollows_Hunter is an Open Source app for advanced users that scans all running processes. It can the recognize and dump a variety of potentially malicious implants including replaced/implanted PEs, shellcodes, hooks, in-memory patches, and more.
Hollows_Hunter should be run in the Command Prompt, so you'll want to right-click at least and select Run as Administrator. Hollows_Hunter is portable; however, a folder with details will be created on each run.
Hollows_Hunteruses PE-sieve which is included. MajorGeeks mirrors contain both the 32-Bit and 64-Bit for those who need to take both with them.
Download