-
Compiler error:
error: redefinition of 'struct _PROCESSOR_NUMBER' in #include from process_hollowing.cpp
Build ENV:
Clion IDE on Win7x64
Mingw toolchain from msys2 (fully updated)
Have you r…
-
Starting in https://github.com/oilshell/oil/commit/60665f242b11bec29bd9d9ef228ecc2ef950f4fd, resizing the terminal causes OSH to crash.
```
$ Traceback (most recent call last):
File "/home/josh…
-
1. In case of injection of "C:\\Program Files\\Microsoft Office\\Root\\Office16\\WINWORD.EXE C:\\sample.doc" drakvuf need to wait for WINWORD process.
2. In case of program with this name and paren…
-
As highlighted in issue #290 current implementation of injector has some cons.
Directly injecting a binary will be a great improvement.
Process hollowing was not the best way (suspicious, miss file …
-
I'd like to add support for Trickbot malware. Any chance you would be willing to give me some pointers to writing CAPE mods? Thanks.
enzok updated
7 years ago
-
Hi all!
I would like to suggest some new terms an da new
definition for the term 'neural tube formation'
primary neural tube formation
Def:The formation of the anterior portion of the neural
tube fr…
-
Okay this is a feature enhancement you might say. It is not ready yet but I put it in its own separate thing here and will do so on mantis to so we wont be confused with this and other bugs.
When I …
-
Hello
I am getting consistently "hung" when attempting to timeline some memory samples. Example:
$ time vol.py -d -f image.mem --profile Win7SP1x64 timeliner --output=body 2> err.out 1> timeliner.txt…
-
the restart-instance and region restart commands do not actually do as they should.
restart region should restart the requested region however while it deregisters the region from the grid service it…