├── README.md
├── funcap.py
├── img
    ├── be2_api_resolver.png
    ├── call_ecx.png
    ├── call_rax.png
    ├── call_to_unknown.png
    ├── code_discovery.png
    ├── console.png
    ├── decryption.png
    ├── graph.png
    ├── move_file.png
    ├── multi_deref.png
    ├── taidoor.png
    └── taidoor_svchost.png
└── utils
    ├── fundump.py
    └── funload.py


/README.md:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/deresz/funcap/HEAD/README.md


--------------------------------------------------------------------------------
/funcap.py:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/deresz/funcap/HEAD/funcap.py


--------------------------------------------------------------------------------
/img/be2_api_resolver.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/deresz/funcap/HEAD/img/be2_api_resolver.png


--------------------------------------------------------------------------------
/img/call_ecx.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/deresz/funcap/HEAD/img/call_ecx.png


--------------------------------------------------------------------------------
/img/call_rax.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/deresz/funcap/HEAD/img/call_rax.png


--------------------------------------------------------------------------------
/img/call_to_unknown.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/deresz/funcap/HEAD/img/call_to_unknown.png


--------------------------------------------------------------------------------
/img/code_discovery.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/deresz/funcap/HEAD/img/code_discovery.png


--------------------------------------------------------------------------------
/img/console.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/deresz/funcap/HEAD/img/console.png


--------------------------------------------------------------------------------
/img/decryption.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/deresz/funcap/HEAD/img/decryption.png


--------------------------------------------------------------------------------
/img/graph.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/deresz/funcap/HEAD/img/graph.png


--------------------------------------------------------------------------------
/img/move_file.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/deresz/funcap/HEAD/img/move_file.png


--------------------------------------------------------------------------------
/img/multi_deref.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/deresz/funcap/HEAD/img/multi_deref.png


--------------------------------------------------------------------------------
/img/taidoor.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/deresz/funcap/HEAD/img/taidoor.png


--------------------------------------------------------------------------------
/img/taidoor_svchost.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/deresz/funcap/HEAD/img/taidoor_svchost.png


--------------------------------------------------------------------------------
/utils/fundump.py:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/deresz/funcap/HEAD/utils/fundump.py


--------------------------------------------------------------------------------
/utils/funload.py:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/deresz/funcap/HEAD/utils/funload.py


--------------------------------------------------------------------------------