nasbench/procmon-malware-analysis-filters external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

nasbench/procmon-malware-analysis-filters

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/nasbench/procmon-malware-analysis-filters)

Close

nasbench / procmon-malware-analysis-filtersView on GitHubMore

• External links
• Readme badge

Repository containing malware analysis filters for the Windows SysInternals' - Process Monitor tool

☆21Oct 2, 2020Updated 5 years ago

Alternatives and similar repositories for procmon-malware-analysis-filters

Users that are interested in procmon-malware-analysis-filters are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• MotiBa / ProcessMonitorAnalyzeMalware

  View on GitHub
  Script to parse Process Monitor XML log file, and give you a summary report.
  ☆24May 4, 2016Updated 10 years ago
• cado-security / MalwareAnalysis

  View on GitHub
  MalwareAnalysis
  ☆12Dec 19, 2020Updated 5 years ago
• libyal / winevt-kb

  View on GitHub
  Windows Event Log Knowledge Base
  ☆33May 16, 2026Updated last week
• alternat0r / training-basic-malware-analysis

  View on GitHub
  In this training will be covered about a very basic step for malware analysis. Using several free tools to recognize malware behavior. Si…
  ☆12May 25, 2016Updated 10 years ago
• theanonhackuk / prynt

  View on GitHub
  Here i will upload every prynt stealer stub source code and you will discover that is stormkitty 0_0 (I didnt buy anything from prynt whi…
  ☆12Jan 8, 2023Updated 3 years ago
• 1-Click AI Models by DigitalOcean Gradient • Ad
  Deploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
• sandmaxprime / VagrantMalwareWin10VM

  View on GitHub
  Vagrant Files to create a Virtualbox VM for Malware Analysis
  ☆13Jun 1, 2021Updated 4 years ago
• RomaissaAdjailia / MindMaps

  View on GitHub
  ☆23Jun 1, 2022Updated 3 years ago
• mgeeky / procmon-filters

  View on GitHub
  SysInternals' Process Monitor filters repository - collected from various places and made up by myself. To be used for quick Behavioral a…
  ☆71Sep 28, 2021Updated 4 years ago
• RomaissaAdjailia / Get-AppLockerEventlog

  View on GitHub
  This is a repo for fetching Applocker event log by parsing the win-event log
  ☆30Aug 6, 2022Updated 3 years ago
• humpalum / vscode-sigma

  View on GitHub
  ☆17Oct 13, 2025Updated 7 months ago
• sensepost / MITMf

  View on GitHub
  Framework for Man-In-The-Middle attacks
  ☆15Feb 19, 2018Updated 8 years ago
• ThreatLabz / pikabot-deobfuscator

  View on GitHub
  An IDA plugin to deobfuscate Pikabot's strings using RC4 and AES
  ☆13Apr 8, 2024Updated 2 years ago
• kr0no / Ducky2Arduino

  View on GitHub
  Simple DuckyScript to Arduino converter
  ☆14Jan 14, 2019Updated 7 years ago
• AzzOnFire / yarka

  View on GitHub
  IDA plugin for YARA signature creation
  ☆22Nov 30, 2025Updated 5 months ago
• Managed Database hosting by DigitalOcean • Ad
  PostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
• HullaBrian / EventHorizon

  View on GitHub
  Tool that gathers a customizable set of ETW telemetry and generates user-defined detections
  ☆54Jan 28, 2026Updated 3 months ago
• helgeklein / ListUserWriteableDirectories

  View on GitHub
  Scans the filesystem for directories that are user-writeable
  ☆13Jun 21, 2021Updated 4 years ago
• woanware / etw-event-dumper

  View on GitHub
  ☆33Feb 26, 2022Updated 4 years ago
• S-RM / wiskess_rust

  View on GitHub
  WISKESS automates the Windows evidence processing for Incident Response investigations. Rust version.
  ☆17May 12, 2026Updated 2 weeks ago
• canselcik / Epicenter-Remote-Administration-Tool

  View on GitHub
  A Remote Administration Tool coded in C#
  ☆19Jul 5, 2012Updated 13 years ago
• DanusMinimus / API-Hash

  View on GitHub
  API hashing written in C to load APIs indirectly using CRC32 hashing
  ☆15Jul 27, 2020Updated 5 years ago
• NextronSystems / iocs

  View on GitHub
  Indicators of compromise from to analysis and research by Nextron Threat Research team
  ☆12Sep 17, 2025Updated 8 months ago
• stairwell-inc / threat-research

  View on GitHub
  Repository of tools, YARA rules, and code-snippets from Stairwell's research team.
  ☆23Jan 31, 2024Updated 2 years ago
• ashubits / Malware-Analysis

  View on GitHub
  ☆11Feb 14, 2025Updated last year
• Deploy open-source AI quickly and easily - Special Bonus Offer • Ad
  Runpod Hub is built for open source. One-click deployment and autoscaling endpoints without provisioning your own infrastructure.
• magicsword-io / Magic-SigExplorer

  View on GitHub
  ☆15Sep 24, 2024Updated last year
• libcrack / python-peid

  View on GitHub
  PEiD like python script
  ☆10Mar 5, 2017Updated 9 years ago
• zacbrown / PowerShellMethodAuditor

  View on GitHub
  PowerShellMethodAuditor listens to the PowerShell ETW provider and logs PowerShell method invocations.
  ☆37Sep 19, 2017Updated 8 years ago
• AGDCservices / Misc-Malware-Analysis-Tools

  View on GitHub
  This repo contains miscellaneous tools to aid in your malware analysis.
  ☆13Mar 2, 2021Updated 5 years ago
• api0cradle / BGInfo

  View on GitHub
  ☆16Jun 1, 2018Updated 7 years ago
• MHaggis / SequelEyes

  View on GitHub
  SQL, IIS, Oh My...
  ☆21Feb 24, 2025Updated last year
• enkomio / RunDotNetDll

  View on GitHub
  A simple utility to list all methods of a given .NET Assembly and to invoke them
  ☆75Sep 21, 2021Updated 4 years ago
• asgarciap / etw-dns

  View on GitHub
  A simple example application to collect DNS queries logs using etw-api
  ☆27May 11, 2020Updated 6 years ago
• SigmaHQ / sigmahq.github.io

  View on GitHub
  Official Website Of The Sigma Project
  ☆22Feb 16, 2026Updated 3 months ago
• Deploy on Railway without the complexity - Free Credits Offer • Ad
  Connect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
• puffyCid / macos-fseventsd

  View on GitHub
  A library to parse macOS FsEvents
  ☆25Aug 28, 2022Updated 3 years ago
• rivitna / emu_ida

  View on GitHub
  ☆15Apr 8, 2023Updated 3 years ago
• olafhartong / PockETWatcher

  View on GitHub
  a tiny program to consume from ETW providers for research
  ☆55Jan 4, 2025Updated last year
• Neo23x0 / DLLRunner

  View on GitHub
  Smart DLL execution for malware analysis in sandbox systems
  ☆144Feb 16, 2015Updated 11 years ago
• NextronSystems / evtx-baseline

  View on GitHub
  A repository hosting example goodware evtx logs containing sample software installation and basic user interaction
  ☆89Mar 11, 2026Updated 2 months ago
• sathia-musso / enelgrid

  View on GitHub
  This custom integration for Home Assistant retrieves and imports energy consumption data from Enel Italia
  ☆23Nov 6, 2025Updated 6 months ago
• chooka888 / BluetoothDuck

  View on GitHub
  An Android controlled bluetooth rubber duck - see my hackaday.io project for instructions to make your own for less than $10
  ☆25Jan 2, 2018Updated 8 years ago