PE-sieve

PE-sieve scans a given process, searching for the modules containing in-memory code modifications. When found, it dumps the modified PE. Detects inline hooks, hollowed processes, Process Doppelgänging etc. Can be used for unpacking malware.

Some of the top features or benefits of PE-sieve are: Open Source, Lightweight, Versatile, Command Line Utility, and Detailed Reports. You can visit the info page to learn more.

We know about 2 alternatives to PE-sieve. You can find them below. The top competitors are: Process Dump and LiveDump.

PE-sieve Alternatives

PE-sieve alternatives based on verified products, community votes, reviews and similar products.

3

PD

Process Dump

↔ PE-sieve

Dumps memory components from specific processes or from all processes currently running. Supports creation and use of a clean-hash database, so that dumping of all the clean files such as kernel32.dll can be skipped.

Key Process Dump features:

Ease of Use Memory Analysis Compatibility Performance

Open Source

/process-dump-alternatives
3

LiveDump

↔ PE-sieve

Process memory dumper.

Key LiveDump features:

Real-time memory dumping Useful for reverse engineering Lightweight and focused Free availability

/livedump-alternatives
Featured

✓ Appark.ai

↔ PE-sieve

Free app market analytics tool for growth and competition insights.

Key Appark.ai features:

Completely free Lightning-fast chart updates

Try for free free

Try for free