microsoft/ProcMon-for-Linux external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

microsoft/ProcMon-for-Linux

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/microsoft/ProcMon-for-Linux)

Close

microsoft / ProcMon-for-LinuxView on GitHubMore

• External links
• Readme badge

A Linux version of the Procmon Sysinternals tool

☆4,675May 7, 2026Updated last week

Alternatives and similar repositories for ProcMon-for-Linux

Users that are interested in ProcMon-for-Linux are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• microsoft / ProcDump-for-Linux

  View on GitHub
  A Linux version of the ProcDump Sysinternals tool
  ☆3,070May 7, 2026Updated last week
• microsoft / SysmonForLinux

  View on GitHub
  Sysmon for Linux
  ☆2,100May 7, 2026Updated last week
• microsoft / SysinternalsEBPF

  View on GitHub
  The Linux port of the Sysinternals Sysmon tool.
  ☆284May 7, 2026Updated last week
• rizinorg / cutter

  View on GitHub
  Free and Open Source Reverse Engineering Platform powered by rizin
  ☆18,865Updated this week
• winsiderss / systeminformer

  View on GitHub
  A free, powerful, multi-purpose tool that helps you monitor system resources, debug software and detect malware. Brought to you by Winsid…
  ☆14,632Updated this week
• Deploy on Railway without the complexity - Free Credits Offer • Ad
  Connect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
• taviso / loadlibrary

  View on GitHub
  Porting Windows Dynamic Link Libraries to Linux
  ☆4,483Apr 10, 2025Updated last year
• microsoft / ebpf-for-windows

  View on GitHub
  eBPF implementation that runs on top of Windows
  ☆3,488Updated this week
• zodiacon / ProcMonXv2

  View on GitHub
  Process Monitor X v2
  ☆656Jan 22, 2024Updated 2 years ago
• blackberry / pe_tree

  View on GitHub
  Python module for viewing Portable Executable (PE) files in a tree-view using pefile and PyQt5. Can also be used with IDA Pro and Rekall …
  ☆1,339Jul 9, 2022Updated 3 years ago
• WerWolv / ImHex

  View on GitHub
  🔍 A Hex Editor for Reverse Engineers, Programmers and people who value their retinas when working at 3 AM.
  ☆53,605Updated this week
• mandiant / capa

  View on GitHub
  The FLARE team's open-source tool to identify capabilities in executable files.
  ☆6,002May 12, 2026Updated last week
• qilingframework / qiling

  View on GitHub
  A True Instrumentable Binary Emulation Framework
  ☆5,920Apr 28, 2026Updated 3 weeks ago
• NationalSecurityAgency / ghidra

  View on GitHub
  Ghidra is a software reverse engineering (SRE) framework
  ☆68,594Updated this week
• google / tsunami-security-scanner

  View on GitHub
  Tsunami is a general purpose network security scanner with an extensible plugin system for detecting high severity vulnerabilities with h…
  ☆8,568May 11, 2026Updated last week
• Managed Kubernetes at scale on DigitalOcean • Ad
  DigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
• zodiacon / SystemExplorer

  View on GitHub
  Windows System Explorer
  ☆884Nov 29, 2025Updated 5 months ago
• gcla / termshark

  View on GitHub
  A terminal UI for tshark, inspired by Wireshark
  ☆9,893Apr 30, 2024Updated 2 years ago
• microsoft / Detours

  View on GitHub
  Detours is a software package for monitoring and instrumenting API calls on Windows. It is distributed in source code form.
  ☆6,254Mar 18, 2026Updated 2 months ago
• hasherezade / pe-sieve

  View on GitHub
  Scans a given process. Recognizes and dumps a variety of potentially malicious implants (replaced/injected PEs, shellcodes, hooks, in-mem…
  ☆3,657May 3, 2026Updated 2 weeks ago
• VirusTotal / yara

  View on GitHub
  The pattern matching swiss knife
  ☆9,614May 7, 2026Updated last week
• radareorg / radare2

  View on GitHub
  UNIX-like reverse engineering framework and command-line toolset
  ☆23,822Updated this week
• joxeankoret / diaphora

  View on GitHub
  Diaphora, the most advanced Free and Open Source program diffing tool.
  ☆4,258Updated this week
• mandiant / speakeasy

  View on GitHub
  Windows kernel and user mode emulation.
  ☆1,955Apr 8, 2026Updated last month
• iovisor / bcc

  View on GitHub
  BCC - Tools for BPF-based Linux IO analysis, networking, monitoring, and more
  ☆22,410May 7, 2026Updated last week
• Wordpress hosting with auto-scaling - Free Trial Offer • Ad
  Fully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
• hfiref0x / WinObjEx64

  View on GitHub
  Windows Object Explorer 64-bit
  ☆1,922Mar 22, 2026Updated last month
• HyperDbg / HyperDbg

  View on GitHub
  State-of-the-art native debugging tools
  ☆3,795May 12, 2026Updated last week
• solemnwarning / rehex

  View on GitHub
  Reverse Engineers' Hex Editor
  ☆2,455Apr 3, 2026Updated last month
• hasherezade / hollows_hunter

  View on GitHub
  Scans all running processes. Recognizes and dumps a variety of potentially malicious implants (replaced/implanted PEs, shellcodes, hooks,…
  ☆2,352Apr 18, 2026Updated last month
• rabbitstack / fibratus

  View on GitHub
  Adversary tradecraft detection, protection, and hunting
  ☆2,469May 12, 2026Updated last week
• hasherezade / tiny_tracer

  View on GitHub
  A Pin Tool for tracing API calls etc
  ☆1,652Feb 8, 2026Updated 3 months ago
• wader / fq

  View on GitHub
  jq for binary formats - tool, language and decoders for working with binary and text formats
  ☆10,496May 10, 2026Updated last week
• avast / retdec

  View on GitHub
  RetDec is a retargetable machine-code decompiler based on LLVM.
  ☆8,528May 13, 2026Updated last week
• lief-project / LIEF

  View on GitHub
  LIEF - Library to Instrument Executable Formats (C++, Python, Rust)
  ☆5,416Updated this week
• Wordpress hosting with auto-scaling - Free Trial Offer • Ad
  Fully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
• silverf0x / RpcView

  View on GitHub
  RpcView is a free tool to explore and decompile Microsoft RPC interfaces
  ☆1,056Sep 24, 2023Updated 2 years ago
• googleprojectzero / sandbox-attacksurface-analysis-tools

  View on GitHub
  Set of tools to analyze Windows sandboxes for exposed attack surface.
  ☆2,287Nov 6, 2025Updated 6 months ago
• bpftrace / bpftrace

  View on GitHub
  High-level tracing language for Linux
  ☆10,094May 12, 2026Updated last week
• x64dbg / x64dbg

  View on GitHub
  An open-source user mode debugger for Windows. Optimized for reverse engineering and malware analysis.
  ☆48,359May 10, 2026Updated last week
• nshalabi / SysmonTools

  View on GitHub
  Utilities for Sysmon
  ☆1,644Apr 4, 2026Updated last month
• microsoft / AttackSurfaceAnalyzer

  View on GitHub
  Attack Surface Analyzer can help you analyze your operating system's security configuration for changes during software installation.
  ☆2,933Feb 26, 2026Updated 2 months ago
• microsoft / WSL2-Linux-Kernel

  View on GitHub
  The source for the Linux kernel used in Windows Subsystem for Linux 2 (WSL2)
  ☆10,400Updated this week