Skip to content

nefarius/DLLSpy

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

39 Commits

.github/workflows

.github/workflows

 
 

DLLSpy

DLLSpy

 
 

assets

assets

 
 

.editorconfig

.editorconfig

 
 

.gitignore

.gitignore

 
 

DLLSpy.sln

DLLSpy.sln

 
 

DLLSpy.sln.DotSettings

DLLSpy.sln.DotSettings

 
 

LICENSE

LICENSE

 
 

README.md

README.md

 
 

Repository files navigation

DLLSpy

This is a fork of the fantastic DLLSpy project by CyberArk and contributors.

MSBuild GitHub all releases

Why fork

Made a few major changes to better fit my own needs of the tool:

  • The scan results are printed to STDOUT as valid JSON and can therefore easily digested and further processed by whatever analysis tools you want to chain the results into 🔥
  • The tool status and potential error messages are printed to STDERR only, so they will never end up in and mangle the JSON results ✅
  • Modernized and sped up the code by updating to modern C++ paradigms ⚡
  • Added a version resource, a little pet peeve of mine 😉

How to use

I recommend to run the tool in an elevated PowerShell session and pipe the scan results into the ConvertFrom-Json cmdlet, like:

.\DLLSpy.exe -d -s | ConvertFrom-Json

This will give you true objects for each discovered process you can explore or further process in whatever way you can imagine!

About

DLL Hijacking Detection Tool

Resources

Readme

License

LGPL-3.0 license
Activity

Stars

9 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases 1

v1.0.0 Release Latest
Apr 30, 2023

Contributors 2

Languages