H9

This tool is designed to detect malicious Win32 APIs in the Import Address Table(IAT) while the process is running in memory. It can enumerate and collect all processes in memory, including both 32-bit and 64-bit processes. Utilizing a highly effective rule-based methodology, this tool allows for a more precise and targeted detection process>

Name		Name	Last commit message	Last commit date
Latest commit History 37 Commits
H9_x64.cpp		H9_x64.cpp
README.md		README.md
ReflectiveDllDetector_RDD.cs		ReflectiveDllDetector_RDD.cs
main.cpp		main.cpp
parserYml.cpp		parserYml.cpp
x64Structs.h		x64Structs.h

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

H9_x64.cpp

H9_x64.cpp

README.md

README.md

ReflectiveDllDetector_RDD.cs

ReflectiveDllDetector_RDD.cs

main.cpp

main.cpp

parserYml.cpp

parserYml.cpp

x64Structs.h

x64Structs.h

Repository files navigation

H9

About

Releases

Packages

Languages

darksys0x/H9

Folders and files

Latest commit

History

Repository files navigation

H9

About

Resources

Stars

Watchers

Forks

Languages