pagiux / IRPLogger
A minifilter driver to capture processes behavior from a filesystem prospective.
☆13Updated 3 months ago
Alternatives and similar repositories for IRPLogger:
Users that are interested in IRPLogger are comparing it to the libraries listed below
- Robust API monitoring system presented in the paper "Designing Robust API Monitoring Solutions" (IEEE TDSC)☆23Updated 3 years ago
- Ransomware detection application for Windows using Windows Minifilter driver☆79Updated 4 years ago
- Defense from the 2020 Microsoft Evasion Competition☆16Updated 3 years ago
- Research tool able to detect and mitigate evasion techniques used by malware in-the-wild☆11Updated last year
- ☆12Updated 4 years ago
- [SmartCom2017] An Effective Malware Detection based on Behaviour and Data Feature☆19Updated 6 years ago
- Procmonel is Procmon like monitoring system implemented using Microsoft WDK☆11Updated 5 years ago
- AVCLASS++: Yet Another Massive Malware Labeling Tool☆14Updated 5 years ago
- A new idea to build an anti ransomware☆21Updated 4 years ago
- A Deep Learning ensemble that classifies Windows executable files as either benign, ransomware, or other malware.☆26Updated 5 years ago
- A minifilter driver for detecting and blocking ransomware virus☆26Updated 6 years ago
- ☆10Updated 4 years ago
- 基于MiniFilter和Sfilter的加解密☆21Updated 5 years ago
- This repository contains D-TIME: Distributed Threadless Independent Malware Execution for Runtime Obfuscation.☆35Updated 3 years ago
- Technion CS Ransomware Project: Writing Windows Mini-Filter Driver to protect PC from Ransomware☆35Updated 3 years ago
- Classifying malware families by converting their binaries to images and then applying Convolutional Neural Network solutions.☆13Updated 3 years ago
- RanSAP: An Open Dataset of Ransomware Storage Access Patterns for Training Machine Learning Models☆28Updated 4 months ago
- The windows kernel ssdt hook demo☆16Updated 6 years ago
- Simple AntiVirus Driver example☆37Updated 7 years ago
- Dataset of packed ELF samples☆18Updated last year
- Code-Reuse Exploits detection using Intel Processor Trace☆28Updated 6 years ago
- An attempt to detect malware using Opcodes and Hexadecimal Instructions.☆31Updated 3 years ago
- It's a malware detection API for Windows malware utilizing Artificial Neural network.☆17Updated 5 months ago
- 🔍 "2015 Microsoft Malware Classification Challenge" - Using machine learning to classify malware into different families based on Window…☆22Updated 11 months ago
- python program to detect Portable_Executable files as either malicious or legitimate by trying out 5 different classification algorithms …☆11Updated 7 years ago
- ☆28Updated 7 years ago
- Protect a file from being deleted using windows kernel file system minifilter driver☆35Updated 3 years ago
- Windows Simple Process Logger implemented as driver☆18Updated 7 years ago
- A minifilter driver preserves all modified and deleted files.☆80Updated 9 years ago