.I find PAIMEI and Pydbg as potentially rich framework. However almost all the examples in the PAIMEI framework uses pydbg to attach to a pid of a process that is already running and using load() does not work. Incase of malware analysis, I find this as a challenge as in most cases the malware immediately completes its actions after launching before using pydbg. I am really sure that i am missing something here as PAIMEI has been successfuly used by many researchers for four years now. Can somebody here point out what am i missing?
![[+] expand](/imagery/files/soysauce_blueprint.gif){kind=link}