Alternatives and similar repositories for procmon-parser:

Users that are interested in procmon-parser are comparing it to the libraries listed below

• msuiche / LiveCloudKd
  Hyper-V Research is trendy now
  ☆177Updated 9 months ago
• ionescu007 / wnfun
  WNF Utilities 4 Newbies (WNFUN)
  ☆93Updated 6 years ago
• kobykahane / NpEtw
  Named pipe I/O ETW provider for Windows
  ☆69Updated 4 years ago
• Cyb3rWard0g / WinRpcFunctions
  ☆67Updated 2 years ago
• jdu2600 / Windows10EtwEvents
  Events from all manifest-based and mof-based ETW providers across Windows 10 versions
  ☆286Updated 9 months ago
• 0xeb / WinTools
  A collection of free miscellaneous Windows tools
  ☆130Updated 6 months ago
• hugsy / windbg_js_scripts
  Toy scripts for playing with WinDbg JS API
  ☆224Updated 7 months ago
• jthuraisamy / ioctlpus
  ☆107Updated 4 years ago
• VirusTotal / vt-ida-plugin
  Official VirusTotal plugin for IDA Pro
  ☆157Updated last year
• vagnerpilar / windbgtree
  A command tree based on commands and extensions for Windows Kernel Debugging.
  ☆107Updated 4 years ago
• ernw / Windows-Insight
  The content of this repository aims to assist efforts on analysing inner working principles, functionalities, and properties of the Micro…
  ☆151Updated 4 years ago
• pan-unit42 / dotnetfile
  ☆104Updated last year
• ntdiff / ntdiff
  ☆125Updated 4 months ago
• DownWithUp / CallMon
  CallMon is an experimental system call monitoring tool that works on Windows 10 versions 2004+ using PsAltSystemCallHandlers
  ☆130Updated 4 years ago
• fkie-cad / RoAMer
  Robust Automated Malware Unpacker
  ☆84Updated last year
• wbenny / EtwConsumerNT
  Simple project that demonstrates how an ETW consumer can be created just by using NTDLL
  ☆139Updated 5 years ago
• WithSecureLabs / GarbageMan
  GarbageMan is a set of tools for analyzing .NET binaries through heap analysis.
  ☆115Updated last year
• d35ha / xLogger
  Simple windows API logger
  ☆99Updated 5 years ago
• sgabe / SymlinkProtect
  File system minifilter driver for Windows to block symbolic link attacks.
  ☆51Updated 4 years ago
• malwarefrank / dnfile
  Parse .NET executable files.
  ☆75Updated 3 weeks ago
• gerhart01 / Hyper-V-scripts
  Hyper-V scripts
  ☆114Updated last year
• synacktiv / dotNIET
  ☆102Updated 3 years ago
• gerhart01 / LiveCloudKd
  Hyper-V Research is trendy now
  ☆158Updated this week
• SouhailHammou / Drivers
  Windows Drivers
  ☆97Updated 5 years ago
• kevoreilly / capemon
  capemon: CAPE's monitor
  ☆107Updated this week
• commial / ttd-bindings
  Bindings for Microsoft WinDBG TTD
  ☆215Updated last year
• hasherezade / funky_malware_formats
  Parsers for custom malware formats ("Funky malware formats")
  ☆93Updated 3 years ago
• Signal-Labs / IOCTLDump
  ☆141Updated last year
• jthuraisamy / DIRT
  Driver Initial Reconnaissance Tool
  ☆121Updated 5 years ago
• danielplohmann / apiscout
  This project aims at simplifying Windows API import recovery on arbitrary memory dumps
  ☆247Updated last year