volatility-browserhooks icon indicating copy to clipboard operation
volatility-browserhooks copied to clipboard

Published 20 hours ago verified publisher icon eset

Metadata

Volatility Framework plugin to detect various types of hooks as performed by banking Trojans

volatility-browserhooks

Volatility-browserhooks is a http://www.volatilityfoundation.org[Volatility Framework] plugin to detect various types of hooks as performed by recent banking Trojans.

Usage

  1. Move browserhooks.py to volatility/plugins/malware in the Volatilty Framework path.
  2. Run: python vol.py -f dump_from_compromised_windows_system.vmem --profile=Win7SP1x64 browserhooks (-D _store_mods)

Authors

  • Peter Kálnai <peter.kalnai @_eset.cz>
  • Michal Poslušný <michal.poslusny @_eset.cz>

Metadata

39
Stars
17
Forks
Watchers

Owner

verified publisher icon eset

Metadata

Volatility Framework plugin to detect various types of hooks as performed by banking Trojans

Back