Add: hasherezade/mal_unpack to Malware Analysis section

2024-12-11 17:14:21 -05:00 · 2021-08-31 11:34:19 +07:00 · 2021-08-31 11:34:19 +07:00 · 6aefcbd6a1
commit 6aefcbd6a1
parent dc754cf5b6
1 changed files with 4 additions and 0 deletions
--- a/README.md
+++ b/README.md
@ -1981,6 +1981,10 @@ This repository is created as an online bookmark for useful links, resources and
        <td><a href="https://github.com/hasherezade/libpeconv/tree/master/run_pe">hasherezade/libpeconv/runpe</a></td>
        <td>RunPE (aka Process Hollowing) is a well known technique allowing to injecting a new PE into a remote processes, imprersonating this process. The given implementation works for PE 32bit as well as 64bit.</td>
    </tr>
+    <tr>
+        <td><a href="https://github.com/hasherezade/mal_unpack">hasherezade/mal_unpack</a></td>
+        <td>Dynamic unpacker based on PE-sieve</td>
+    </tr>
    <tr>
        <td><a href="https://github.com/hasherezade/pe-sieve">hasherezade/pe-sieve</a></td>
        <td>Scans a given process, searching for the modules containing in-memory code modifications. When found, it dumps the modified PE.</td>