Home Kali Linux Pe-Sieve : Recognizes & Dumps A Variety Of Potentially Malicious Implants

Kali Linux

Pe-Sieve : Recognizes & Dumps A Variety Of Potentially Malicious Implants

May 14, 2019

PE-sieve is a light-weight tool that helps to detect malware running on the system, as well as to collect the potentially malicious material for further analysis.

Recognizes and dumps variety of implants within the scanned process: replaced/injected PEs, shellcodes, hooks, and other in-memory patches.

Detects inline hooks, Process Hollowing, Process Doppelgänging, Reflective DLL Injection, etc.

Also Read – OSINT-SPY : Performs OSINT Scan On Email/Domain/IP_Address/Organisation

Clone

Use recursive clone to get the repo together with the submodule:

git clone –recursive https://github.com/hasherezade/pe-sieve.git

Latest builds

Those builds are available for testing and they may be ahead of the official release:

32-bit
64-bit

Download

Pe-Sieve : Recognizes & Dumps A Variety Of Potentially Malicious Implants

APPLICATIONS

Sh00t : A Testing Environment for Manual Security Testers

Icebox : Virtual Machine Introspection, Tracing & Debugging

Spamscanner : Spam Scanner Is The Best Anti-Spam, Email Filtering, And Phishing Prevention Service

Hfinger – Fingerprinting Malware HTTP Requests

HOT NEWS

Sub.sh : Online Subdomain Detect Script

EVEN MORE NEWS

Bomber : Navigating Security Vulnerabilities In SBOMs

EmbedPayloadInPng : A Guide To Embedding And Extracting Encrypted Payloads In...

Exploit Street – Navigating The New Terrain Of Windows LPEs

POPULAR CATEGORY

Sish : HTTP(S)/WS(S)/TCP Tunnels To Localhost Using Only SSH

Hash Identifier : Software To Identify The Different Types Of Hashes...

H2T : HTTP Hardening Tool Scans Website & Suggests Security Headers...