eronnen / procmon-parserLinks
Parser to process monitor file formats
☆144Updated 2 years ago
Alternatives and similar repositories for procmon-parser
Users that are interested in procmon-parser are comparing it to the libraries listed below
Sorting:
- Hyper-V Research is trendy now☆180Updated last year
- Events from all manifest-based and mof-based ETW providers across Windows 10 versions☆299Updated last year
- Toy scripts for playing with WinDbg JS API☆228Updated 10 months ago
- Hyper-V scripts☆122Updated last year
- capemon: CAPE's monitor☆118Updated last week
- ☆104Updated last year
- Named pipe I/O ETW provider for Windows☆70Updated 4 years ago
- A collection of free miscellaneous Windows tools☆135Updated 9 months ago
- Official VirusTotal plugin for IDA Pro☆157Updated last year
- Bindings for Microsoft WinDBG TTD☆223Updated last year
- IDA python plugin to scan binary with Yara rules☆173Updated last year
- IDA Pro plugin for recognizing known hashes of API function names☆81Updated 3 years ago
- A command tree based on commands and extensions for Windows Kernel Debugging.☆108Updated 4 years ago
- Two IDAPython Scripts help you to reconstruct Microsoft COM (Component Object Model) Code☆183Updated 4 years ago
- 0CCh Windbg extension: include some useful commands☆111Updated last year
- Sysmon-Like research tool for ETW☆353Updated 2 years ago
- ☆143Updated 2 years ago
- Parse .NET executable files.☆75Updated 2 weeks ago
- ☆227Updated 2 years ago
- A Windows kernel dump C++ parser library with Python 3 bindings.☆199Updated 10 months ago
- ☆126Updated 8 months ago
- Simple windows API logger☆104Updated 5 years ago
- Parsers for custom malware formats ("Funky malware formats")☆96Updated 3 years ago
- Hyper-V Research is trendy now☆163Updated last month
- Windbg2ida lets you dump each step in Windbg then shows these steps in IDA☆75Updated 10 months ago
- Static Binary Instrumentation tool for Windows x64 executables☆203Updated last month
- A bunch of JavaScript extensions for WinDbg.☆340Updated 6 months ago
- This project aims at simplifying Windows API import recovery on arbitrary memory dumps☆249Updated 2 years ago
- CallMon is an experimental system call monitoring tool that works on Windows 10 versions 2004+ using PsAltSystemCallHandlers☆143Updated 4 years ago
- Robust Automated Malware Unpacker☆84Updated 2 years ago