Alternatives and similar repositories for JonMon:

Users that are interested in JonMon are comparing it to the libraries listed below

• jsecurity101 / TelemetrySource
  ☆227Updated 8 months ago
• jsecurity101 / ETWInspector
  ☆155Updated 8 months ago
• forensicxlab / VISION-ProcMon
  A ProcessMonitor visualization application written in rust.
  ☆176Updated last year
• gtworek / VolatileDataCollector
  ☆196Updated 2 months ago
• Cyb3r-Monk / ACCD
  Active C&C Detector
  ☆152Updated last year
• ExaTrack / Kdrill
  Python tool to check rootkits in Windows kernel
  ☆180Updated 2 months ago
• knight0x07 / OneNoteAnalyzer
  A C# based tool for analysing malicious OneNote documents
  ☆109Updated last year
• nasbench / Misc-Research
  A collection of tools, scripts and personal research
  ☆120Updated 6 months ago
• outflanknl / edr-internals
  Tools for analyzing EDR agents
  ☆214Updated 7 months ago
• struppigel / hedgehog-tools
  ☆111Updated last month
• HackingLZ / ExtractedDefender
  ☆215Updated 2 years ago
• cbecks2 / edr-artifacts
  This repository is meant to catalog network and host artifacts associated with various EDR products "shell" and response functionalities.
  ☆76Updated 4 months ago
• pathtofile / SealighterTI
  Combining Sealighter with unpatched exploits to run the Threat-Intelligence ETW Provider
  ☆168Updated 2 years ago
• jstrosch / sclauncher
  A small program written in C that is designed to load 32/64-bit shellcode and allow for execution or debugging. Can also output PE files …
  ☆129Updated 5 months ago
• embee-research / Yara-detection-rules
  Yara Rules for Modern Malware
  ☆73Updated 10 months ago
• ajm4n / DLLHound
  Find potential DLL Sideloads on your windows computer
  ☆168Updated last week
• YoavLevi / IAT-Tracer
  An automation plugin for Tiny-Tracer framework to trace and watch functions directly out of the executable's import table or trace logs (…
  ☆114Updated 6 months ago
• deepinstinct / NoFilter
  ☆296Updated 2 months ago
• CCob / Shwmae
  ☆136Updated 3 months ago
• LOLESXi-Project / LOLESXi
  LOLESXi is a curated compilation of binaries/scripts available in VMware ESXi that are were used to by adversaries in their intrusions. T…
  ☆115Updated last month
• jaredcatkinson / MalwareMorphology
  ☆77Updated last month
• RussianPanda95 / Yara-Rules
  Repository of Yara Rules
  ☆96Updated 2 weeks ago
• SafeBreach-Labs / aikido_wiper
  ☆64Updated 2 years ago
• trustedsec / The_Shelf
  Retired TrustedSec Capabilities
  ☆243Updated last month
• airbus-cert / minusone
  Powershell Linter
  ☆49Updated last month
• 100DaysofYARA / 2024
  Rules shared by the community from 100 Days of YARA 2024
  ☆83Updated 2 weeks ago
• dodo-sec / Malware-Analysis
  ☆131Updated last year
• Mayyhem / Maestro
  Abusing Intune for Lateral Movement over C2
  ☆315Updated this week
• kacos2000 / Prefetch-Browser
  Browse Windows Prefetch versions: 17,23,26,30v1/2,31 & some of SuperFetch .7db/.db's
  ☆59Updated last month
• synacktiv / ntdissector
  ☆131Updated 5 months ago