nasbench/procmon-malware-analysis-filters external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

nasbench/procmon-malware-analysis-filters

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/nasbench/procmon-malware-analysis-filters)

Close

nasbench / procmon-malware-analysis-filtersView on GitHubMore

• External links
• Readme badge

Repository containing malware analysis filters for the Windows SysInternals' - Process Monitor tool

☆21Oct 2, 2020Updated 5 years ago

Alternatives and similar repositories for procmon-malware-analysis-filters

Users that are interested in procmon-malware-analysis-filters are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• MotiBa / ProcessMonitorAnalyzeMalware

  View on GitHub
  Script to parse Process Monitor XML log file, and give you a summary report.
  ☆23May 4, 2016Updated 10 years ago
• libyal / winevt-kb

  View on GitHub
  Windows Event Log Knowledge Base
  ☆33Apr 13, 2026Updated 3 weeks ago
• theanonhackuk / prynt

  View on GitHub
  Here i will upload every prynt stealer stub source code and you will discover that is stormkitty 0_0 (I didnt buy anything from prynt whi…
  ☆12Jan 8, 2023Updated 3 years ago
• sandmaxprime / VagrantMalwareWin10VM

  View on GitHub
  Vagrant Files to create a Virtualbox VM for Malware Analysis
  ☆13Jun 1, 2021Updated 4 years ago
• SecurityAura / Aura-Research

  View on GitHub
  Repo that hold write-ups of various research projects I did and/or overall InfoSec things I investigated/researched.
  ☆22Jan 5, 2025Updated last year
• 1-Click AI Models by DigitalOcean Gradient • Ad
  Deploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
• RomaissaAdjailia / MindMaps

  View on GitHub
  ☆23Jun 1, 2022Updated 3 years ago
• RomaissaAdjailia / Get-AppLockerEventlog

  View on GitHub
  This is a repo for fetching Applocker event log by parsing the win-event log
  ☆31Aug 6, 2022Updated 3 years ago
• humpalum / vscode-sigma

  View on GitHub
  ☆17Oct 13, 2025Updated 6 months ago
• davidtwco / dotfiles

  View on GitHub
  @davidtwco's dotfiles - managed by chezmoi!
  ☆14Jan 16, 2026Updated 3 months ago
• f-block / volatility-plugins

  View on GitHub
  ☆24Apr 22, 2025Updated last year
• ThreatLabz / pikabot-deobfuscator

  View on GitHub
  An IDA plugin to deobfuscate Pikabot's strings using RC4 and AES
  ☆13Apr 8, 2024Updated 2 years ago
• AndrewRathbun / DFIRPowerShellScripts

  View on GitHub
  Various PowerShells scripts I've made (or others have made) to automate some of the boring stuff in my everyday DFIR journey!
  ☆53Jan 9, 2026Updated 3 months ago
• AzzOnFire / yarka

  View on GitHub
  IDA plugin for YARA signature creation
  ☆19Nov 30, 2025Updated 5 months ago
• HullaBrian / EventHorizon

  View on GitHub
  Tool that gathers a customizable set of ETW telemetry and generates user-defined detections
  ☆53Jan 28, 2026Updated 3 months ago
• Virtual machines for every use case on DigitalOcean • Ad
  Get dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
• yaunj / vim-yara

  View on GitHub
  Yara filetype plugin for Vim.
  ☆14Feb 18, 2021Updated 5 years ago
• helgeklein / ListUserWriteableDirectories

  View on GitHub
  Scans the filesystem for directories that are user-writeable
  ☆13Jun 21, 2021Updated 4 years ago
• center-for-threat-informed-defense / attack-powered-suit

  View on GitHub
  ATT&CK Powered Suit is a browser extension that puts the complete MITRE ATT&CK® knowledge base at your fingertips with text search, conte…
  ☆82Updated this week
• woanware / etw-event-dumper

  View on GitHub
  ☆33Feb 26, 2022Updated 4 years ago
• S-RM / wiskess_rust

  View on GitHub
  WISKESS automates the Windows evidence processing for Incident Response investigations. Rust version.
  ☆16Apr 24, 2026Updated last week
• canselcik / Epicenter-Remote-Administration-Tool

  View on GitHub
  A Remote Administration Tool coded in C#
  ☆19Jul 5, 2012Updated 13 years ago
• DanusMinimus / API-Hash

  View on GitHub
  API hashing written in C to load APIs indirectly using CRC32 hashing
  ☆15Jul 27, 2020Updated 5 years ago
• stairwell-inc / threat-research

  View on GitHub
  Repository of tools, YARA rules, and code-snippets from Stairwell's research team.
  ☆23Jan 31, 2024Updated 2 years ago
• ashubits / Malware-Analysis

  View on GitHub
  ☆11Feb 14, 2025Updated last year
• Managed hosting for WordPress and PHP on Cloudways • Ad
  Managed hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
• magicsword-io / Magic-SigExplorer

  View on GitHub
  ☆15Sep 24, 2024Updated last year
• libcrack / python-peid

  View on GitHub
  PEiD like python script
  ☆10Mar 5, 2017Updated 9 years ago
• zacbrown / PowerShellMethodAuditor

  View on GitHub
  PowerShellMethodAuditor listens to the PowerShell ETW provider and logs PowerShell method invocations.
  ☆37Sep 19, 2017Updated 8 years ago
• AGDCservices / Misc-Malware-Analysis-Tools

  View on GitHub
  This repo contains miscellaneous tools to aid in your malware analysis.
  ☆13Mar 2, 2021Updated 5 years ago
• alexey-kleymenov / reverse_engineering_tools

  View on GitHub
  Various code samples and useful tips and tricks from reverse engineering and malware analysis fields.
  ☆106Jun 11, 2025Updated 10 months ago
• MHaggis / SequelEyes

  View on GitHub
  SQL, IIS, Oh My...
  ☆22Feb 24, 2025Updated last year
• enkomio / RunDotNetDll

  View on GitHub
  A simple utility to list all methods of a given .NET Assembly and to invoke them
  ☆75Sep 21, 2021Updated 4 years ago
• asgarciap / etw-dns

  View on GitHub
  A simple example application to collect DNS queries logs using etw-api
  ☆27May 11, 2020Updated 5 years ago
• MathildeVenault / SysMainView

  View on GitHub
  This tool is the result of a reverse engineering process of the Windows service called SysMain. Time to interact with the prefetch files …
  ☆33Nov 2, 2020Updated 5 years ago
• Managed Kubernetes at scale on DigitalOcean • Ad
  DigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
• rivitna / emu_ida

  View on GitHub
  ☆14Apr 8, 2023Updated 3 years ago
• olafhartong / PockETWatcher

  View on GitHub
  a tiny program to consume from ETW providers for research
  ☆56Jan 4, 2025Updated last year
• Neo23x0 / DLLRunner

  View on GitHub
  Smart DLL execution for malware analysis in sandbox systems
  ☆144Feb 16, 2015Updated 11 years ago
• rivitna / APT

  View on GitHub
  ☆15Oct 25, 2022Updated 3 years ago
• lawiet47 / autoresponder

  View on GitHub
  Carbon Black Response IR tool
  ☆56Dec 10, 2020Updated 5 years ago
• NextronSystems / evtx-baseline

  View on GitHub
  A repository hosting example goodware evtx logs containing sample software installation and basic user interaction
  ☆89Mar 11, 2026Updated last month
• sathia-musso / enelgrid

  View on GitHub
  This custom integration for Home Assistant retrieves and imports energy consumption data from Enel Italia
  ☆22Nov 6, 2025Updated 5 months ago