Repository containing malware analysis filters for the Windows SysInternals' - Process Monitor tool
☆21Oct 2, 2020Updated 5 years ago
Alternatives and similar repositories for procmon-malware-analysis-filters
Users that are interested in procmon-malware-analysis-filters are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- MalwareAnalysis☆12Dec 19, 2020Updated 5 years ago
- Windows Event Log Knowledge Base☆33Updated this week
- In this training will be covered about a very basic step for malware analysis. Using several free tools to recognize malware behavior. Si…☆12May 25, 2016Updated 9 years ago
- Vagrant Files to create a Virtualbox VM for Malware Analysis☆13Jun 1, 2021Updated 4 years ago
- Repo that hold write-ups of various research projects I did and/or overall InfoSec things I investigated/researched.☆22Jan 5, 2025Updated last year
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- SysInternals' Process Monitor filters repository - collected from various places and made up by myself. To be used for quick Behavioral a…☆70Sep 28, 2021Updated 4 years ago
- ☆23Jun 1, 2022Updated 3 years ago
- Framework for Man-In-The-Middle attacks☆15Feb 19, 2018Updated 8 years ago
- @davidtwco's dotfiles - managed by chezmoi!☆14Jan 16, 2026Updated 2 months ago
- ☆24Apr 22, 2025Updated 11 months ago
- Various PowerShells scripts I've made (or others have made) to automate some of the boring stuff in my everyday DFIR journey!☆52Jan 9, 2026Updated 3 months ago
- An IDA plugin to deobfuscate Pikabot's strings using RC4 and AES☆13Apr 8, 2024Updated 2 years ago
- IDA plugin for YARA signature creation☆19Nov 30, 2025Updated 4 months ago
- Tool that gathers a customizable set of ETW telemetry and generates user-defined detections☆47Jan 28, 2026Updated 2 months ago
- GPU virtual machines on DigitalOcean Gradient AI • AdGet to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
- Bash script for performing the logical acquisition of Apple Silicon Mac☆17Jun 21, 2024Updated last year
- Yara filetype plugin for Vim.☆14Feb 18, 2021Updated 5 years ago
- Scans the filesystem for directories that are user-writeable☆13Jun 21, 2021Updated 4 years ago
- ATT&CK Powered Suit is a browser extension that puts the complete MITRE ATT&CK® knowledge base at your fingertips with text search, conte…☆82Mar 19, 2026Updated 3 weeks ago
- ☆33Feb 26, 2022Updated 4 years ago
- WISKESS automates the Windows evidence processing for Incident Response investigations. Rust version.☆16Mar 25, 2026Updated 3 weeks ago
- Indicators of compromise from to analysis and research by Nextron Threat Research team☆12Sep 17, 2025Updated 6 months ago
- API hashing written in C to load APIs indirectly using CRC32 hashing☆15Jul 27, 2020Updated 5 years ago
- Repository of tools, YARA rules, and code-snippets from Stairwell's research team.☆23Jan 31, 2024Updated 2 years ago
- GPUs on demand by Runpod - Special Offer Available • AdRun AI, ML, and HPC workloads on powerful cloud GPUs—without limits or wasted spend. Deploy GPUs in under a minute and pay by the second.
- ☆11Feb 14, 2025Updated last year
- ☆15Sep 24, 2024Updated last year
- PEiD like python script☆10Mar 5, 2017Updated 9 years ago
- PowerShellMethodAuditor listens to the PowerShell ETW provider and logs PowerShell method invocations.☆37Sep 19, 2017Updated 8 years ago
- This repo contains miscellaneous tools to aid in your malware analysis.☆13Mar 2, 2021Updated 5 years ago
- A WIP WebAssembly decompiler, targeted at Il2CPP games☆23Sep 28, 2024Updated last year
- Various code samples and useful tips and tricks from reverse engineering and malware analysis fields.☆106Jun 11, 2025Updated 10 months ago
- SQL, IIS, Oh My...☆22Feb 24, 2025Updated last year
- A simple utility to list all methods of a given .NET Assembly and to invoke them☆75Sep 21, 2021Updated 4 years ago
- Serverless GPU API endpoints on Runpod - Bonus Credits • AdSkip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
- Official Website Of The Sigma Project☆23Feb 16, 2026Updated last month
- A library to parse macOS FsEvents☆25Aug 28, 2022Updated 3 years ago
- ☆14Apr 8, 2023Updated 3 years ago
- ☆14Oct 25, 2022Updated 3 years ago
- Carbon Black Response IR tool☆56Dec 10, 2020Updated 5 years ago
- A repository hosting example goodware evtx logs containing sample software installation and basic user interaction☆88Mar 11, 2026Updated last month
- A simple tool designed to create Atomic Red Team tests with ease.☆50Mar 11, 2025Updated last year