Alternatives and similar repositories for FileMonitoring

Users that are interested in FileMonitoring are comparing it to the libraries listed below

• ximerus / Kryptonite
  A Win32 PE/Executable Crypter that employs on the fly encryption & decryption of memory
  ☆33Updated 11 years ago
• weixu8 / RegistryMonitor
  Formely KMon, a Windows Kernel Driver designed to prevent malware attacks by monitoring the creation of registry keys in common autorun l…
  ☆21Updated 11 years ago
• SanseoLab / ProcLogger
  Windows Simple Process Logger implemented as driver
  ☆18Updated 7 years ago
• viorelyo / Procmonel
  Procmonel is Procmon like monitoring system implemented using Microsoft WDK
  ☆12Updated 5 years ago
• Biswa96 / TraceEvent
  Trace events in real time sessions
  ☆45Updated last year
• repnz / windows-inspector
  A driver to intercept low level windows events
  ☆62Updated 5 years ago
• apriorit / antirootkit-anti-splicer
  The project is a demo solution for one of the anti-rootkit techniques aimed on overcoming splicers
  ☆34Updated 8 years ago
• GoodstudyChina / USBlocker
  ☆17Updated 6 years ago
• NtRaiseHardError / Dreadnought
  PoC for detecting and dumping code injection (built and extended on UnRunPE)
  ☆56Updated 6 years ago
• SanseoLab / simpleAVdriver
  Simple AntiVirus Driver example
  ☆38Updated 7 years ago
• sikuner / book-code
  ☆39Updated 6 years ago
• daterlove / ActiveDefense
  小型主动防御引擎
  ☆56Updated 9 years ago
• nfedera / run-as-trustedinstaller
  ☆42Updated 8 years ago
• SHA-MRIZ / FsMinfilterHooking
  ☆31Updated 4 years ago
• TimelifeCzy / Sandboxie_Hook
  Sandboxie应用层Hook框架方案
  ☆18Updated 5 months ago
• Voraka / CyxvcProtect
  CyxvcProtect packer written with C++
  ☆21Updated 7 years ago
• Neosama / Reverse-SOCKS5
  Server/Client SOCKS5 (RFC 1928) in Reverse mode on Windows
  ☆36Updated 6 years ago
• edix / AlternativeCreateRemoteThread-public
  Load and unload a DLL into an remote process without using WriteProcessMemory ;)
  ☆16Updated 11 years ago
• zodiacon / DllInjectionWithThreadContext
  This is a sample that shows how to leverage SetThreadContext for DLL injection
  ☆84Updated 7 years ago
• JKornev / hijacken
  Analyze and attack windows applications using dll hijacking vulnerabilities
  ☆57Updated 5 years ago
• KbaHaxor / Ammyy-v3
  Ammyy v3 Source Code leak , with ❤️ <3
  ☆37Updated 8 years ago
• SweetIceLolly / Prevent_File_Deletion
  Record & prevent file deletion in kernel mode
  ☆44Updated 4 years ago
• meiningnie / HookNdis
  a network filter using NDIS hook technique
  ☆19Updated 12 years ago
• apriorit / SvcHostDemo
  Demo service that runs in svchost.exe
  ☆79Updated 7 years ago
• zer0condition / IDTHook-x86
  Detour hooking IRQ1 ISR through IDT (Interrupt Descriptor Table)
  ☆20Updated 2 years ago
• avast / authenticode-parser
  Authenticode-parser is a simple C library for Authenticode format parsing using OpenSSL.
  ☆18Updated last year
• y11en / PEBFake
  PEBFake(修改PEB 伪装当前进程路径、参数等)
  ☆51Updated 4 years ago
• zodiacon / BITSManager
  BITS Transfers Manager
  ☆42Updated last month
• mtth-bfft / lsobj
  Lists all visible objects in the Windows kernel object namespace, a command-line WinObj
  ☆14Updated 7 years ago
• killswitch-GUI / SetWindowsHookEx-Keylogger
  Windows C++ Native Keylogger using SetWindowsHookEx
  ☆66Updated 5 years ago