Anomalies
- 14 Feb 2024
- 1 Minute to read
- Contributors
- Print
- DarkLight
Anomalies
- Updated on 14 Feb 2024
- 1 Minute to read
- Contributors
- Print
- DarkLight
Article summary
Did you find this summary helpful?
Thank you for your feedback
hidden_module_scan
Look for hidden modules in a process's (or all) memory. Hidden modules are DLLs or dylibs loaded manually (not by the OS).
Platforms:
Response Event:
HIDDEN_MODULE_DETECTED
Usage:
usage: hidden_module_scan [-h] pid
positional arguments:
pid pid of the process to scan, or "-1" for ALL processes
Was this article helpful?