eronnen / procmon-parser
Parser to process monitor file formats
☆142Updated 2 years ago
Alternatives and similar repositories for procmon-parser:
Users that are interested in procmon-parser are comparing it to the libraries listed below
- Official VirusTotal plugin for IDA Pro☆156Updated last year
- Hyper-V Research is trendy now☆178Updated 11 months ago
- Named pipe I/O ETW provider for Windows☆70Updated 4 years ago
- ☆105Updated last year
- Toy scripts for playing with WinDbg JS API☆227Updated 9 months ago
- WNF Utilities 4 Newbies (WNFUN)☆94Updated 6 years ago
- Parse .NET executable files.☆76Updated 2 months ago
- A DTrace on Windows Reimplementation☆343Updated 2 months ago
- Two IDAPython Scripts help you to reconstruct Microsoft COM (Component Object Model) Code☆182Updated 4 years ago
- ☆126Updated 6 months ago
- Parsers for custom malware formats ("Funky malware formats")☆96Updated 3 years ago
- CallMon is an experimental system call monitoring tool that works on Windows 10 versions 2004+ using PsAltSystemCallHandlers☆131Updated 4 years ago
- Bindings for Microsoft WinDBG TTD☆220Updated last year
- A collection of free miscellaneous Windows tools☆133Updated 8 months ago
- Events from all manifest-based and mof-based ETW providers across Windows 10 versions☆294Updated 11 months ago
- capemon: CAPE's monitor☆116Updated this week
- Simple windows API logger☆101Updated 5 years ago
- ☆67Updated 2 years ago
- IDA plugin for quickly copying disassembly as encoded hex bytes☆60Updated 3 years ago
- ☆104Updated 3 years ago
- Hyper-V scripts☆121Updated last year
- GarbageMan is a set of tools for analyzing .NET binaries through heap analysis.☆114Updated 2 years ago
- The history of Windows Internals via symbols.☆176Updated 3 years ago
- A command tree based on commands and extensions for Windows Kernel Debugging.☆107Updated 4 years ago
- The FLARE team's open-source library to disassemble Common Intermediate Language (CIL) instructions.☆164Updated 2 weeks ago
- A collection of my IDA plugins☆134Updated 4 years ago
- Library and tools to access the Windows Prefetch File (SCCA) format.☆73Updated 3 months ago
- ShowStopper is a tool for helping malware researchers explore and test anti-debug techniques or verify debugger plugins or other solution…☆204Updated 2 years ago
- IDA python plugin to scan binary with Yara rules☆172Updated last year
- MalUnpack companion driver☆98Updated 10 months ago