Alternatives and similar repositories for Ransomware-Detection

Users that are interested in Ransomware-Detection are comparing it to the libraries listed below

• jgh0721 / Win-IO-Monitor
  Windows IO Monitor( by using minifilter )
  ☆9Updated 4 years ago
• OSRDrivers / tunnel
  Demonstrate the behavior of the tunnel cache on Windows
  ☆10Updated 5 years ago
• zodiacon / AccessMask
  ☆20Updated 5 years ago
• PELock / starter
  A small utility to run raw code chunks in the executable memory area.
  ☆14Updated 10 years ago
• zodiacon / TaskSched
  ☆28Updated 2 years ago
• sumeshi / ntfsdump
  An efficient tool for extracting files, directories, and alternate data streams directly from NTFS image files.
  ☆21Updated last year
• CAPESandbox / sflock
  Sample staging & detonation utility to be used in combination with Cuckoo Sandbox.
  ☆11Updated 3 months ago
• weixu8 / RegistryMonitor
  Formely KMon, a Windows Kernel Driver designed to prevent malware attacks by monitoring the creation of registry keys in common autorun l…
  ☆21Updated 11 years ago
• reverseame / modex
  Volatility 3 plugins to extract a module as complete as possible
  ☆12Updated last year
• zodiacon / ObjDir
  Simple command line version of Sysinternals WinObj. Currently just lists object names and types given an object manager directory.
  ☆20Updated last year
• ElliotAlderson51 / Kernel-Rootkit-32Bit
  Rootkit for Windows 32-bit
  ☆6Updated 3 years ago
• DissectMalware / yaradbg-backend
  ☆25Updated last year
• roman-allen / FSFilterDriver
  Windows file system driver which allows to block access to files at run-time (C/C++, C#, WDK, SDK)
  ☆10Updated 2 years ago
• am0nsec / masm64
  Collection of structures, prototype and examples for Microsoft Macro Assembler (MASM) x64.
  ☆16Updated 4 years ago
• AhmedRaja1 / Malware-Development
  Malware Development
  ☆11Updated 4 years ago
• gentilkiwi / kirandomtpm
  Get random bytes from the TPM (tool + BCrypt RNG provider)
  ☆17Updated 4 years ago
• gfleury / ProtegeDados_ProjetoFinal
  Microsoft Windows real time file integrity monitoring and filtering using minifilter technology, this is was my university final project
  ☆11Updated 10 years ago
• 474172261 / DataProtector
  A simple ransomware defender.It uses minifilter to filt "rewrite" and "delete" events in kernel.And it handles event in user mode.
  ☆27Updated 6 years ago
• tpn / windows-nt-file-system-internals-book
  Source code on the 1.44MB 3.5 floppy accompanying the Windows NT File System Internals book.
  ☆16Updated 5 years ago
• OSRDrivers / deleteex
  Demonstrate the new FileDispositionInfoEx behavior
  ☆14Updated 7 years ago
• zodiacon / InfStudio
  INF Studio for easier working with driver installation files
  ☆38Updated last year
• killswitch-GUI / IsDebuggerPresent
  Debugger checks in 3 ways
  ☆19Updated 7 years ago
• connormcgarr / Presentations
  ☆28Updated 7 months ago
• rsa9000 / regfanalysistools
  Low-level MS Windows registry files analysis tools
  ☆20Updated 9 years ago
• gerhart01 / HyperV-sockets
  Hyper-V sockets
  ☆29Updated 7 years ago
• mandiant / win10_rekall
  Rekall Memory Forensic Framework
  ☆32Updated 5 years ago
• ayoubfaouzi / awesome-virtualization
  ☆17Updated 6 years ago
• libyal / libcaes
  Library to support cross-platform AES encryption
  ☆12Updated 8 months ago
• zha0 / pdfstreamdumper
  research tool for the analysis of malicious pdf documents. make sure to run the installer first to get all of the 3rd party dlls installe…
  ☆13Updated 11 years ago
• SafeBreach-Labs / CoWTools
  Tools for analyzing Windows containers and break container's isolation
  ☆31Updated 2 years ago