Alternatives and similar repositories for EvtxCarv

Users that are interested in EvtxCarv are comparing it to the libraries listed below

• kernullist / krn_pcre
  Windows Kernel Mode PCRE
  ☆10Updated 10 years ago
• wj32 / umkcf
  User-mode kernel callback framework
  ☆10Updated 12 years ago
• somma / wmiq
  Handy WMI query tool.
  ☆12Updated 9 years ago
• russellklenk / ETW
  Event Tracing for Windows Custom Events
  ☆21Updated 10 years ago
• AzureGreen / WinNT-Learning
  Notes my learning steps about Windows-NT
  ☆23Updated 8 years ago
• EvilKnight1986 / Simrep
  windows kernel File redirection
  ☆20Updated 11 years ago
• apriorit / antirootkit-anti-splicer
  The project is a demo solution for one of the anti-rootkit techniques aimed on overcoming splicers
  ☆35Updated 8 years ago
• arcpop / Observer
  ☆17Updated 9 years ago
• lxt1045 / FileLogger
  ☆12Updated 8 years ago
• 0xdabbad00 / OpenHIPS
  OpenHIPS prevents exploitation of Windows systems
  ☆35Updated 12 years ago
• wolk-1024 / WoW64Utils
  WoW64 -> x64
  ☆19Updated 9 years ago
• papadp / shd
  Ssdt Hook Detection tool
  ☆13Updated 9 years ago
• Microwave89 / win7-x64-ndk
  Native Development Kit for Vista 64bit And Later, by me, Based on NDK Headers 1.0, by Alex Ionescu
  ☆17Updated 9 years ago
• ghonsa / DeviceDmp
  Windows device tree walker
  ☆15Updated 7 years ago
• JKornev / PE-Compare-Tools
  UI application that can compare PE images in memory or in raw PE file
  ☆19Updated 11 years ago
• dotfornet / WindowsUtil
  ☆14Updated 8 years ago
• louk78 / Virgo
  Minifilter Driver
  ☆15Updated 8 years ago
• emc2314 / PEZEncrypt
  PE Infector/Cryptor source code
  ☆16Updated 8 years ago
• uniking / TDI-Demo
  ☆16Updated 9 years ago
• tandasat / ListWorkItems
  Lists work items being queued currently.
  ☆14Updated 10 years ago
• changeofpace / Remote-Process-Cookie-for-Windows-7
  Obtain remote process cookies by performing a brute-force attack on ntdll.RtlDecodePointer using known pointer encodings.
  ☆22Updated 8 years ago
• alanzw / AutoProfilingToolTrunk
  profiling tool for analysising the games, get all the characteristic by hook d3d
  ☆18Updated 11 years ago
• martin-hughes / project_azalea
  A future hobby OS kernel
  ☆11Updated 5 years ago
• xiaobfly / TsFltMgr
  ☆14Updated 10 years ago
• pitercantropo / dd
  ☆15Updated 7 years ago
• hkhk366 / Memory_Codes_Injection
  Inject codes to another process to watch and operate other process. This is usually used as anti-virus software.
  ☆13Updated 10 years ago
• killvxk / VoxDebugger
  An analytical debugger programmed in C++, using Qt.
  ☆21Updated 13 years ago
• mgeeky / prc_xchk
  User-mode process cross-checking utility intended to detect naive malware hiding itself by hooking IAT/EAT.
  ☆19Updated 9 years ago
• ww898 / in_proc_etw
  The internal Windows structures hack to create the in-process private ETW session
  ☆13Updated 8 years ago
• KelvinMsft / SyncJobs_MPSystem
  ☆14Updated 7 years ago