Alternatives and similar repositories for EvtxCarv:

Users that are interested in EvtxCarv are comparing it to the libraries listed below

• somma / wmiq
  Handy WMI query tool.
  ☆12Updated 8 years ago
• kernullist / krn_pcre
  Windows Kernel Mode PCRE
  ☆10Updated 10 years ago
• ghonsa / DeviceDmp
  Windows device tree walker
  ☆15Updated 6 years ago
• somma / bob_dbg
  ☆10Updated 8 years ago
• dgros / Malware_Analyzer
  Framework complet d'analyse de malware
  ☆12Updated 9 years ago
• Nukem9 / VMWareClient
  Reverse engineered vmware workstation code to aid in kernel debugging.
  ☆14Updated 9 years ago
• Mirraz / regparser
  Windows registry files interactive viewer
  ☆9Updated 7 years ago
• AzureGreen / WinNT-Learning
  Notes my learning steps about Windows-NT
  ☆23Updated 7 years ago
• hailehong95 / practice-maldev
  Common Malware Techniques
  ☆13Updated 2 years ago
• mgeeky / prc_xchk
  User-mode process cross-checking utility intended to detect naive malware hiding itself by hooking IAT/EAT.
  ☆19Updated 9 years ago
• changeofpace / Remote-Process-Cookie-for-Windows-7
  Obtain remote process cookies by performing a brute-force attack on ntdll.RtlDecodePointer using known pointer encodings.
  ☆22Updated 7 years ago
• tandasat / ListWorkItems
  Lists work items being queued currently.
  ☆13Updated 9 years ago
• ohierro / gDrive
  Google Drive windows virtual unit
  ☆9Updated 11 years ago
• aaaddress1 / APCInjector-BYPASS-AV
  ☆19Updated 9 years ago
• aeoliazhang / windows_knifetool
  windows内核小工具，包含APP和driver
  ☆11Updated 10 years ago
• killvxk / THL-StealthDLLInjection
  ☆10Updated 10 years ago
• DeviceObject / DarkCloud
  Dark Cloud Virus
  ☆7Updated 7 years ago
• apriorit / antirootkit-anti-splicer
  The project is a demo solution for one of the anti-rootkit techniques aimed on overcoming splicers
  ☆34Updated 8 years ago
• papadp / shd
  Ssdt Hook Detection tool
  ☆13Updated 8 years ago
• zer0fl4g / OllyCallstack
  simple plugin for lastest olly versions to display the callstack
  ☆16Updated 11 years ago
• IgorKorkin / AllMemProTestBed
  Legal access: The driver and console app to demonstrate the basic memory access in kernel mode
  ☆9Updated 7 years ago
• lxt1045 / FileLogger
  ☆12Updated 8 years ago
• xiaobfly / TsFltMgr
  ☆14Updated 9 years ago
• after1990s / InjectSolution
  ☆12Updated 10 years ago
• russellklenk / ETW
  Event Tracing for Windows Custom Events
  ☆21Updated 10 years ago
• MechanicsMingYan / MProtect
  ☆13Updated 7 years ago
• GracjanP / win-desk
  A tiny library that lets you draw on Windows desktop.
  ☆9Updated 8 years ago
• imgits / ShellcodeVM
  ShellcodeVM
  ☆14Updated 8 years ago
• louk78 / Virgo
  Minifilter Driver
  ☆15Updated 8 years ago
• SanseoLab / ProcLogger
  Windows Simple Process Logger implemented as driver
  ☆18Updated 7 years ago