nasbench/procmon-malware-analysis-filters external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

nasbench/procmon-malware-analysis-filters

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/nasbench/procmon-malware-analysis-filters)

Close

nasbench / procmon-malware-analysis-filtersView on GitHubMore

• External links
• Readme badge

Repository containing malware analysis filters for the Windows SysInternals' - Process Monitor tool

☆20Oct 2, 2020Updated 5 years ago

Alternatives and similar repositories for procmon-malware-analysis-filters

Users that are interested in procmon-malware-analysis-filters are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• MotiBa / ProcessMonitorAnalyzeMalware

  View on GitHub
  Script to parse Process Monitor XML log file, and give you a summary report.
  ☆23May 4, 2016Updated 9 years ago
• cado-security / MalwareAnalysis

  View on GitHub
  MalwareAnalysis
  ☆12Dec 19, 2020Updated 5 years ago
• libyal / winevt-kb

  View on GitHub
  Windows Event Log Knowledge Base
  ☆31Dec 23, 2025Updated 3 months ago
• alternat0r / training-basic-malware-analysis

  View on GitHub
  In this training will be covered about a very basic step for malware analysis. Using several free tools to recognize malware behavior. Si…
  ☆12May 25, 2016Updated 9 years ago
• sandmaxprime / VagrantMalwareWin10VM

  View on GitHub
  Vagrant Files to create a Virtualbox VM for Malware Analysis
  ☆13Jun 1, 2021Updated 4 years ago
• DigitalOcean Gradient AI Platform • Ad
  Build production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
• mgeeky / procmon-filters

  View on GitHub
  SysInternals' Process Monitor filters repository - collected from various places and made up by myself. To be used for quick Behavioral a…
  ☆70Sep 28, 2021Updated 4 years ago
• humpalum / vscode-sigma

  View on GitHub
  ☆17Oct 13, 2025Updated 5 months ago
• RomaissaAdjailia / MindMaps

  View on GitHub
  ☆23Jun 1, 2022Updated 3 years ago
• sensepost / MITMf

  View on GitHub
  Framework for Man-In-The-Middle attacks
  ☆15Feb 19, 2018Updated 8 years ago
• davidtwco / dotfiles

  View on GitHub
  @davidtwco's dotfiles - managed by chezmoi!
  ☆14Jan 16, 2026Updated 2 months ago
• f-block / volatility-plugins

  View on GitHub
  ☆24Apr 22, 2025Updated 11 months ago
• AndrewRathbun / DFIRPowerShellScripts

  View on GitHub
  Various PowerShells scripts I've made (or others have made) to automate some of the boring stuff in my everyday DFIR journey!
  ☆51Jan 9, 2026Updated 2 months ago
• RomaissaAdjailia / Get-AppLockerEventlog

  View on GitHub
  This is a repo for fetching Applocker event log by parsing the win-event log
  ☆31Aug 6, 2022Updated 3 years ago
• ThreatLabz / pikabot-deobfuscator

  View on GitHub
  An IDA plugin to deobfuscate Pikabot's strings using RC4 and AES
  ☆13Apr 8, 2024Updated last year
• DigitalOcean Gradient AI Platform • Ad
  Build production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
• TrunkRecorder / tr-plugin-websocket-server

  View on GitHub
  Lets you monitor the status of recordings
  ☆15May 8, 2024Updated last year
• AzzOnFire / yarka

  View on GitHub
  IDA plugin for YARA signature creation
  ☆19Nov 30, 2025Updated 3 months ago
• giuseppetotaro / asla

  View on GitHub
  Bash script for performing the logical acquisition of Apple Silicon Mac
  ☆17Jun 21, 2024Updated last year
• helgeklein / ListUserWriteableDirectories

  View on GitHub
  Scans the filesystem for directories that are user-writeable
  ☆13Jun 21, 2021Updated 4 years ago
• center-for-threat-informed-defense / attack-powered-suit

  View on GitHub
  ATT&CK Powered Suit is a browser extension that puts the complete MITRE ATT&CK® knowledge base at your fingertips with text search, conte…
  ☆82Mar 19, 2026Updated last week
• woanware / etw-event-dumper

  View on GitHub
  ☆33Feb 26, 2022Updated 4 years ago
• S-RM / wiskess_rust

  View on GitHub
  WISKESS automates the Windows evidence processing for Incident Response investigations. Rust version.
  ☆16Updated this week
• NextronSystems / iocs

  View on GitHub
  Indicators of compromise from to analysis and research by Nextron Threat Research team
  ☆12Sep 17, 2025Updated 6 months ago
• stairwell-inc / threat-research

  View on GitHub
  Repository of tools, YARA rules, and code-snippets from Stairwell's research team.
  ☆23Jan 31, 2024Updated 2 years ago
• GPU virtual machines on DigitalOcean Gradient AI • Ad
  Get to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
• ashubits / Malware-Analysis

  View on GitHub
  ☆11Feb 14, 2025Updated last year
• libcrack / python-peid

  View on GitHub
  PEiD like python script
  ☆10Mar 5, 2017Updated 9 years ago
• magicsword-io / Magic-SigExplorer

  View on GitHub
  ☆15Sep 24, 2024Updated last year
• zacbrown / PowerShellMethodAuditor

  View on GitHub
  PowerShellMethodAuditor listens to the PowerShell ETW provider and logs PowerShell method invocations.
  ☆37Sep 19, 2017Updated 8 years ago
• AGDCservices / Misc-Malware-Analysis-Tools

  View on GitHub
  This repo contains miscellaneous tools to aid in your malware analysis.
  ☆13Mar 2, 2021Updated 5 years ago
• alexey-kleymenov / reverse_engineering_tools

  View on GitHub
  Various code samples and useful tips and tricks from reverse engineering and malware analysis fields.
  ☆106Jun 11, 2025Updated 9 months ago
• qnx425 / PIC18F25K80-Bootloader

  View on GitHub
  PIC Bootloader for ELM327SLCAN
  ☆26Feb 8, 2019Updated 7 years ago
• MHaggis / SequelEyes

  View on GitHub
  SQL, IIS, Oh My...
  ☆22Feb 24, 2025Updated last year
• enkomio / RunDotNetDll

  View on GitHub
  A simple utility to list all methods of a given .NET Assembly and to invoke them
  ☆75Sep 21, 2021Updated 4 years ago
• Bare Metal GPUs on DigitalOcean Gradient AI • Ad
  Purpose-built for serious AI teams training foundational models, running large-scale inference, and pushing the boundaries of what's possible.
• SigmaHQ / sigmahq.github.io

  View on GitHub
  Official Website Of The Sigma Project
  ☆23Feb 16, 2026Updated last month
• puffyCid / macos-fseventsd

  View on GitHub
  A library to parse macOS FsEvents
  ☆24Aug 28, 2022Updated 3 years ago
• rivitna / emu_ida

  View on GitHub
  ☆15Apr 8, 2023Updated 2 years ago
• Neo23x0 / DLLRunner

  View on GitHub
  Smart DLL execution for malware analysis in sandbox systems
  ☆144Feb 16, 2015Updated 11 years ago
• olafhartong / PockETWatcher

  View on GitHub
  a tiny program to consume from ETW providers for research
  ☆55Jan 4, 2025Updated last year
• rivitna / APT

  View on GitHub
  ☆14Oct 25, 2022Updated 3 years ago
• NextronSystems / evtx-baseline

  View on GitHub
  A repository hosting example goodware evtx logs containing sample software installation and basic user interaction
  ☆88Mar 11, 2026Updated 2 weeks ago