Alternatives and similar repositories for procmon-parser

Users that are interested in procmon-parser are comparing it to the libraries listed below

• ionescu007 / wnfun
  WNF Utilities 4 Newbies (WNFUN)
  ☆98Updated 7 years ago
• VirusTotal / vt-ida-plugin
  Official VirusTotal plugin for IDA Pro
  ☆176Updated 2 weeks ago
• DownWithUp / CallMon
  CallMon is an experimental system call monitoring tool that works on Windows 10 versions 2004+ using PsAltSystemCallHandlers
  ☆144Updated 5 years ago
• malwarefrank / dnfile
  Parse .NET executable files.
  ☆81Updated 3 months ago
• hugsy / windbg_js_scripts
  Toy scripts for playing with WinDbg JS API
  ☆242Updated last year
• msuiche / LiveCloudKd
  Hyper-V Research is trendy now
  ☆190Updated last year
• 0xeb / WinTools
  A collection of free miscellaneous Windows tools
  ☆140Updated 4 months ago
• kevoreilly / capemon
  capemon: CAPE's monitor
  ☆142Updated last week
• WithSecureLabs / GarbageMan
  GarbageMan is a set of tools for analyzing .NET binaries through heap analysis.
  ☆118Updated 2 years ago
• hasherezade / funky_malware_formats
  Parsers for custom malware formats ("Funky malware formats")
  ☆98Updated 3 years ago
• d35ha / xLogger
  Simple windows API logger
  ☆109Updated 6 years ago
• RichHeaderResearch / RichPE
  Metadata hash incorporating the Rich Header for robustness against packing and other malware tricks
  ☆70Updated 4 years ago
• Dump-GUY / ghidra_scripts
  ☆73Updated 2 years ago
• kobykahane / NpEtw
  Named pipe I/O ETW provider for Windows
  ☆71Updated 5 years ago
• jthuraisamy / ioctlpus
  ☆124Updated 5 years ago
• KasperskyLab / Apihashes
  IDA Pro plugin for recognizing known hashes of API function names
  ☆82Updated 3 years ago
• fboldewin / COM-Code-Helper
  Two IDAPython Scripts help you to reconstruct Microsoft COM (Component Object Model) Code
  ☆184Updated 5 years ago
• pan-unit42 / dotnetfile
  ☆111Updated 3 months ago
• nazywam / AutoIt-Ripper
  Extract AutoIt scripts embedded in PE binaries
  ☆215Updated last year
• CheckPointSW / showstopper
  ShowStopper is a tool for helping malware researchers explore and test anti-debug techniques or verify debugger plugins or other solution…
  ☆219Updated 3 years ago
• waleedassar / RestrictedKernelLeaks
  ☆164Updated 4 years ago
• poona / APIMiner
  API Logger for Windows Executables
  ☆80Updated 5 years ago
• n1ght-w0lf / WinDbgCheatSheet
  ☆140Updated 4 years ago
• Cyb3rWard0g / WinRpcFunctions
  ☆68Updated 3 years ago
• alexander-hanel / gopep
  Go Lang Portable Executable Parser
  ☆39Updated 4 years ago
• MathildeVenault / SysMainView
  This tool is the result of a reverse engineering process of the Windows service called SysMain. Time to interact with the prefetch files …
  ☆32Updated 5 years ago
• elastic / die-python
  Native Python3 bindings for @horsicq's Detect-It-Easy
  ☆76Updated 7 months ago
• Signal-Labs / IOCTLDump
  ☆148Updated 2 years ago
• jdu2600 / Windows10EtwEvents
  Events from all manifest-based and mof-based ETW providers across Windows 10 versions
  ☆323Updated last year
• ulexec / EmotetCFU
  WIP Emotet Control Flow Unflattening using miasm and radare2
  ☆23Updated 2 years ago