Search found 394 matches

by Buster_BSA
Sun May 14, 2017 1:31 am
Forum: Tools/Software
Topic: PPEE - Professional PE Explorer
Replies: 11
Views: 29536

Re: PPEE - Professional PE Explorer

Thanks for contributing this tool!
by Buster_BSA
Thu May 19, 2016 2:26 pm
Forum: Newbie Questions
Topic: Looking for specific malware
Replies: 4
Views: 11296

Re: Looking for specific malware

And two hard boiled eggs!
by Buster_BSA
Wed Oct 28, 2015 8:54 am
Forum: Newbie Questions
Topic: File/Registry/Memory Analysis/Monitoring Tools
Replies: 2
Views: 5024

Re: File/Registry/Memory Analysis/Monitoring Tools

Try Volatilty + ProcMon.
by Buster_BSA
Mon May 11, 2015 9:27 pm
Forum: Newbie Questions
Topic: Dumping a driver out of memory
Replies: 5
Views: 6902

Re: Dumping a driver out of memory

Check if this is what you are looking for:

http://www.kernelmode.info/forum/viewto ... lit=Drvmon
by Buster_BSA
Wed Apr 22, 2015 9:51 pm
Forum: Newbie Questions
Topic: Sandboxie and x64
Replies: 9
Views: 10692

Re: Sandboxie and x64

Windows XP x64 was not supported by Sandboxie.
by Buster_BSA
Wed Apr 22, 2015 7:48 pm
Forum: Newbie Questions
Topic: Sandboxie and x64
Replies: 9
Views: 10692

Re: Sandboxie and x64

tzuk were using shadow ssdt hooks in earlier experimental builds, but with windows 8 patch guard he was forced to switch to the running sandboxed process in untrusted IL with anonymous user token. SBIEDLL is a virtualization compatibility layer which makes sandbox transparent to the sandboxed appli...
by Buster_BSA
Sun Apr 19, 2015 5:36 pm
Forum: Tools/Software
Topic: Process dumping tool
Replies: 13
Views: 40705

Re: Process dumping tool

Thank you very much for the update and the new features!
by Buster_BSA
Wed Feb 25, 2015 2:03 pm
Forum: Tools/Software
Topic: Anti-malwares for Win98SE ?
Replies: 9
Views: 12016

Re: Anti-malwares for Win98SE ?

Best solution is an antivirus boot cd like "Kaspersky Rescue Disk".
by Buster_BSA
Tue Feb 24, 2015 8:00 am
Forum: Tools/Software
Topic: Open Source Mandingo's Sandbox
Replies: 7
Views: 11957

Re: Open Source Mandingo's Sandbox

Hello Yes, with the "sinjector.exe" client you can inject any DLL to a new spawned process, or running by its PID. Of course, you can use Linux or Windows for the host, but the instructions are not ready yet. If you understand how it works, I think you shouldn't have too many problems to set up the...