RafWu / RansomWatchLinks
Ransomware detection application for Windows using Windows Minifilter driver
☆88Updated 5 years ago
Alternatives and similar repositories for RansomWatch
Users that are interested in RansomWatch are comparing it to the libraries listed below
Sorting:
- This program can retrieve signature information from PE files which signed by one or more certificates on Windows. Supporting multi-signe…☆103Updated 3 years ago
- ☆68Updated 6 years ago
- Use ci.dll API for validating Authenticode signature of files☆157Updated 3 years ago
- Simple driver to register all available process, thread, image, Registry, and Object callbacks☆124Updated 7 years ago
- An example of a client and server using Windows' ALPC functions to send and receive data.☆103Updated 8 months ago
- Collect various versions of ntoskrnl files☆56Updated last year
- A ProcMon-esque tool for monitoring Windows Kernel Drivers☆58Updated 4 years ago
- ☆32Updated 4 years ago
- D☆43Updated 4 years ago
- Protect a file from being deleted using windows kernel file system minifilter driver☆40Updated 4 years ago
- Example Windows Kernel-mode Driver which enumerates running processes.☆57Updated 3 years ago
- Tutorial & a blog post that demonstrate how to code a Windows driver to inject a custom DLL into all running processes. I coded it from s…☆136Updated 4 years ago
- ☆13Updated 5 years ago
- Using C++ STL on Windows kernle development☆90Updated 6 years ago
- Advance LPC☆70Updated 8 years ago
- A driver to intercept low level windows events☆64Updated 5 years ago
- Protect a process from code injection, termination and hooking☆50Updated 4 years ago
- File system minifilter driver for Windows to block symbolic link attacks.☆52Updated 4 years ago
- Modern C++ wrapper for Windows PE signature verification mechanism☆29Updated 6 years ago
- ☆24Updated 7 years ago
- 基于WFP的小型网络过滤驱动,拦截百度的DNS,感谢公司前辈们的思路与指导。☆14Updated 4 years ago
- A minifilter driver preserves all modified and deleted files.☆80Updated 10 years ago
- Record & prevent file deletion in kernel mode☆44Updated 5 years ago
- Technion CS Ransomware Project: Writing Windows Mini-Filter Driver to protect PC from Ransomware☆37Updated 4 years ago
- ☆42Updated 6 years ago
- Procmonel is Procmon like monitoring system implemented using Microsoft WDK☆12Updated 5 years ago
- Windows Kernel Driver with C++ runtime☆172Updated 5 years ago
- C++ library for low-level Windows development☆79Updated last year
- ☆125Updated 5 years ago
- force delete runing .exe application file.or delete any locked file☆73Updated 2 years ago