Alternatives and similar repositories for ferrisetw

Users that are interested in ferrisetw are comparing it to the libraries listed below

• frank2 / exe-rs
  The PE Executable Library, but for Rust!
  ☆80Updated last year
• delulu-hq / phnt-rs
  Rust bindings to the System Informer's (formerly known as Process Hacker) "phnt" native Windows headers
  ☆47Updated 3 months ago
• MSxDOS / ntapi
  Rust FFI bindings for Native API
  ☆114Updated 2 years ago
• lilopkins / lnk-rs
  A Rust library for parsing and writing MS Shell Links (shortcuts, *.lnk)
  ☆33Updated 3 weeks ago
• not-matthias / kernel-driver-with-rust
  The source code for my blog post 'Writing a kernel driver with Rust.'
  ☆138Updated 2 years ago
• sha0coder / libscemu
  SCEMU The crates.io lib, x86 cpu and systems emulator focused mainly for anti-malware
  ☆46Updated 8 months ago
• NiiightmareXD / windows-native
  Windows Native Undocumented API for Rust Language 🔥
  ☆43Updated last year
• zodiacon / syllabi
  ☆63Updated last year
• Hugal31 / yara-rust
  Rust bindings for VirusTotal/Yara
  ☆78Updated 6 months ago
• WithSecureLabs / tau-engine
  A document tagging library
  ☆30Updated 5 months ago
• sonodima / microseh
  Structured Exception Handling (SEH) for Rust
  ☆65Updated 11 months ago
• not-matthias / kernel-alloc-rs
  Minimalistic Windows Kernel Allocator.
  ☆49Updated last year
• omerbenamram / mft
  A parser for the MFT (Master File Table) format
  ☆145Updated 2 years ago
• DownWithUp / CallMon
  CallMon is an experimental system call monitoring tool that works on Windows 10 versions 2004+ using PsAltSystemCallHandlers
  ☆147Updated 5 years ago
• StephanvanSchaik / windows-kernel-rs
  Examples on how to write Windows kernel drivers in Rust
  ☆242Updated last year
• zyantific / zydis-rs
  Zydis Rust Bindings
  ☆93Updated last year
• insula-rs / libwhp
  Windows Hypervisor Platform Rust crate
  ☆59Updated 5 years ago
• williballenthin / lancelot
  intel x86(-64) code analysis library that reconstructs control flow
  ☆107Updated 3 months ago
• ralphje / signify
  Module to generate and verify Authenticode signatures
  ☆82Updated 3 weeks ago
• CooperShield / rustache_injector
  A rust based DLL injection project
  ☆30Updated 3 years ago
• manyfacedllama / amsi-tracer
  Leverage AMSI (Antimalware Scan Interface) technology to aid your analysis. This tool saves all buffers (scripts, .NET assemblies, etc) …
  ☆112Updated 4 years ago
• SouhailHammou / Drivers
  Windows Drivers
  ☆99Updated 6 years ago
• rmccrystal / winkernel-rs
  Utility functions for building Windows kernel drivers in Rust
  ☆21Updated 3 years ago
• mandiant / STrace
  A DTrace on Windows Reimplementation
  ☆358Updated 7 months ago
• ionescu007 / hazmat5
  Local OXID Resolver (LCLOR) : Research and Tooling
  ☆35Updated 4 years ago
• RichHeaderResearch / RichPE
  Metadata hash incorporating the Rich Header for robustness against packing and other malware tricks
  ☆68Updated 4 years ago
• airbus-cert / yara-ttd
  Use YARA rules on Time Travel Debugging traces
  ☆92Updated 2 years ago
• x1tan / rust-uefi-runtime-driver
  Template for UEFI runtime drivers written in Rust with serial logging and debugging support.
  ☆61Updated 4 years ago
• Nordgaren / stealth-win
  ☆47Updated 2 years ago
• graves / loserland_exec
  Load a DLL from memory
  ☆37Updated 3 years ago