pagiux / IRPLoggerLinks
A minifilter driver to capture processes behavior from a filesystem prospective.
☆14Updated 8 months ago
Alternatives and similar repositories for IRPLogger
Users that are interested in IRPLogger are comparing it to the libraries listed below
Sorting:
- Robust API monitoring system presented in the paper "Designing Robust API Monitoring Solutions" (IEEE TDSC)☆24Updated 3 years ago
- Ransomware detection application for Windows using Windows Minifilter driver☆88Updated 5 years ago
- Technion CS Ransomware Project: Writing Windows Mini-Filter Driver to protect PC from Ransomware☆36Updated 4 years ago
- Dataset of packed PE samples☆35Updated 11 months ago
- A minifilter driver preserves all modified and deleted files.☆80Updated 9 years ago
- Windows file system minifilter driver which generates backup copies of certain files before they change☆47Updated 6 years ago
- A driver to intercept low level windows events☆62Updated 5 years ago
- IntroVirt is an guest introspection library for KVM☆54Updated 9 months ago
- Anti-Anti-VM solution via Windows Driver☆58Updated 7 years ago
- Windows disk filter driver to demonstrate sector write redirection☆40Updated 11 years ago
- AVCLASS++: Yet Another Massive Malware Labeling Tool☆14Updated 5 years ago
- ☆13Updated 5 years ago
- ☆37Updated 6 years ago
- Windows Simple Process Logger implemented as driver☆18Updated 7 years ago
- Example WDF/KMDF driver and test app demonstrating the "inverted call model"☆36Updated 5 years ago
- Authenticode-parser is a simple C library for Authenticode format parsing using OpenSSL.☆18Updated last year
- A new idea to build an anti ransomware☆23Updated 4 years ago
- Helper script for Windows kernel debugging with IDA Pro on VMware + GDB stub (including PDB symbols)☆66Updated last year
- A software driver that lets you log kernel-mode debug output into a file on Windows.☆107Updated 6 years ago
- Simple driver to register all available process, thread, image, Registry, and Object callbacks☆123Updated 7 years ago
- Various WinDbg extensions and scripts☆32Updated 6 years ago
- Public datasets of malware and benign executable files (Windows EXE files). The dataset can be used by cybersecurity researchers focusing…☆23Updated last year
- Automated Integration of anti-Reversing methods in PE executables☆52Updated 6 years ago
- capemon: CAPE's monitor☆123Updated 2 weeks ago
- Simple AntiVirus Driver example☆38Updated 7 years ago
- File system minifilter driver for Windows to block symbolic link attacks.☆51Updated 4 years ago
- This repository contains D-TIME: Distributed Threadless Independent Malware Execution for Runtime Obfuscation.☆35Updated 4 years ago
- Retrieve pointers to undocumented kernel functions and offsets to members within undocumented structures to use in your driver by using t…☆60Updated 6 years ago
- Malware Classification and Labelling using Deep Neural Networks☆36Updated 5 years ago
- An example of a client and server using Windows' ALPC functions to send and receive data.☆97Updated 5 months ago