feat: implement comprehensive process hollowing detection

2025-11-08 11:16:42 +02:00
parent 7eddbb575a
commit bae68652e1
3 changed files with 274 additions and 1 deletions
--- a/ghost-core/src/lib.rs
+++ b/ghost-core/src/lib.rs
@@ -1,5 +1,6 @@
 pub mod detection;
 pub mod error;
+pub mod hollowing;
 pub mod hooks;
 pub mod memory;
 pub mod process;
@@ -8,6 +9,7 @@ pub mod thread;

 pub use detection::{DetectionEngine, DetectionResult, ThreatLevel};
 pub use error::{GhostError, Result};
+pub use hollowing::{HollowingDetection, HollowingDetector, HollowingIndicator};
 pub use hooks::{detect_hook_injection, HookDetectionResult, HookInfo};
 pub use memory::{MemoryProtection, MemoryRegion};
 pub use process::ProcessInfo;