This is the Linux app named hollows_hunter whose latest release can be downloaded as hollows_hunter64.zip. It can be run online in the free hosting provider OnWorks for workstations.
Download and run online this app named hollows_hunter with OnWorks for free.
Follow these instructions in order to run this app:
- 1. Downloaded this application in your PC.
- 2. Enter in our file manager https://www.onworks.net/myfiles.php?username=XXXXX with the username that you want.
- 3. Upload this application in such filemanager.
- 4. Start the OnWorks Linux online or Windows online emulator or MACOS online emulator from this website.
- 5. From the OnWorks Linux OS you have just started, goto our file manager https://www.onworks.net/myfiles.php?username=XXXXX with the username that you want.
- 6. Download the application, install it and run it.
SCREENSHOTS:
hollows_hunter
DESCRIPTION:
Hollows Hunter is a command-line malware analysis tool based on the PE-sieve passive memory scanner. It scans running processes, or even the full system, to identify potentially malicious implants. The tool can recognize and dump suspicious artifacts such as replaced PEs, injected PEs, shellcode, hooks, and in-memory patches. Unlike PE-sieve’s more process-specific workflow, Hollows Hunter can select targets using broader criteria such as process IDs, process names, or creation time. This makes it useful for incident response, memory triage, and forensic investigation of suspicious Windows systems. Its purpose is defensive analysis, helping researchers extract suspicious memory artifacts for deeper review.
Features
- Command-line memory scanning
- Full-system or multi-process analysis
- Detection of injected PE artifacts
- Shellcode, hook, and patch recognition
- Suspicious implant dumping
- Incident response and malware triage
Programming Language
C
Categories
This is an application that can also be fetched from https://sourceforge.net/projects/hollows-hunter.mirror/. It has been hosted in OnWorks in order to be run online in an easiest way from one of our free Operative Systems.