Randomize163 / FSDefender
Technion CS Ransomware Project: Writing Windows Mini-Filter Driver to protect PC from Ransomware
☆36Updated 4 years ago
Alternatives and similar repositories for FSDefender:
Users that are interested in FSDefender are comparing it to the libraries listed below
- ☆31Updated 4 years ago
- Static Library For Windows Drivers☆33Updated last month
- Procmonel is Procmon like monitoring system implemented using Microsoft WDK☆12Updated 5 years ago
- ☆24Updated 6 years ago
- Windows Simple Process Logger implemented as driver☆18Updated 7 years ago
- x64 Kernel Hooks Detection☆24Updated 8 years ago
- kernel-mode TDI client which can send and receive HTTP requests☆55Updated 6 years ago
- Windows Console Monitor☆33Updated 5 years ago
- Protected Process Light Library☆18Updated 4 years ago
- Capstone disassembly/disassembler framework: Core (Arm, Arm64, M68K, Mips, PPC, Sparc, SystemZ, X86, X86_64, XCore) + bindings (Python, J…☆14Updated 5 years ago
- PoC of BOOST-ed _EPROCESS.VadRoot iterating☆25Updated 10 years ago
- ☆10Updated 8 years ago
- Hook IDT vector 0xb2 to detect SCI in 64bit windows.☆34Updated 2 years ago
- a driver to enumerate registered pnp callbacks for a particular interface class based on reversal of IoRegisterPlugPlayNotification☆11Updated last year
- fork HoShiMin Avanguard☆19Updated 6 years ago
- ☆34Updated 4 years ago
- ☆33Updated 4 years ago
- Open Source Libraries Collection☆24Updated 9 years ago
- 在Windows上建立一个开源的强制访问控制框架及SDK。使Windows平台的应用开发者,可以不用关心操作系统底层技术,只用进行简单的SDK调用或配置就可以保护自己的应用程序。☆34Updated 8 years ago
- Analysing and defeating PatchGuard universally☆34Updated 4 years ago
- 基于WFP的小型网络过滤驱动,拦截百度的DNS,感谢公司前辈们的思路与指导。☆14Updated 3 years ago
- A driver to intercept low level windows events☆62Updated 5 years ago
- Analyze PatchGuard☆55Updated 6 years ago
- a sandbox project by sudami☆17Updated 6 years ago
- viewing page boundaries of pages with PAGE_NOACCESS protection reveals the presence of x64dbg.☆23Updated 8 years ago
- just an lite AntiRootkit for interesting☆23Updated 9 years ago
- The modifyed cjson that can running on windows kernel☆14Updated 2 years ago
- Example of hijacking system calls via function pointer tables☆32Updated 3 years ago
- Various WinDbg extensions and scripts☆31Updated 6 years ago
- network filter driver that control network send speed, based on windows tdi framework.☆31Updated last year