pagiux / IRPLoggerLinks
A minifilter driver to capture processes behavior from a filesystem prospective.
☆16Updated last year
Alternatives and similar repositories for IRPLogger
Users that are interested in IRPLogger are comparing it to the libraries listed below
Sorting:
- This repo is created to perform I/O Request Packet (IRP) driven ransomware analysis where the IRP logs were collected during ransomware e…☆11Updated 5 years ago
- Robust API monitoring system presented in the paper "Designing Robust API Monitoring Solutions" (IEEE TDSC)☆24Updated 3 years ago
- 🔍 "2015 Microsoft Malware Classification Challenge" - Using machine learning to classify malware into different families based on Window…☆30Updated last year
- A new idea to build an anti ransomware☆24Updated 5 years ago
- Robust Automated Malware Unpacker☆86Updated 2 years ago
- RanSAP: An Open Dataset of Ransomware Storage Access Patterns for Training Machine Learning Models☆28Updated last year
- Public datasets of malware and benign executable files (Windows EXE files). The dataset can be used by cybersecurity researchers focusing…☆23Updated 2 years ago
- Dataset of packed PE samples☆40Updated last year
- python program to detect Portable_Executable files as either malicious or legitimate by trying out 5 different classification algorithms …☆11Updated 8 years ago
- Malware datasets tagged by behavior, platform, vulnerability, and packer☆26Updated last year
- IntroVirt is an guest introspection library for KVM☆57Updated last year
- Ransomware detection application for Windows using Windows Minifilter driver☆90Updated 5 years ago
- capemon: CAPE's monitor☆141Updated this week
- Practical Tamper-Proof System Auditing☆14Updated 2 years ago
- Library to hide DBI artifacts when using Intel Pin. Code from the ASIA CCS 2019 paper "SoK: Using Dynamic Binary Instrumentation for Secu…☆23Updated 6 years ago
- A curated dataset of malware and benign Windows executable samples for malware researchers☆50Updated last week
- ☆14Updated 6 years ago
- ☆15Updated 5 years ago
- ☆13Updated 5 years ago
- Malware Classification using Machine learning☆74Updated last year
- BluePill: Neutralizing Anti-Analysis Behavior in Malware Dissection (Black Hat Europe 2019, IEEE TIFS 2020)☆127Updated 3 years ago
- An implementation of the paper "ELF-Miner: Using Structural Knowledge and Data Mining Methods To Detect New (Linux) Malicious Executables…☆15Updated 6 years ago
- This repository contains D-TIME: Distributed Threadless Independent Malware Execution for Runtime Obfuscation.☆35Updated 4 years ago
- Malware Classification and Labelling using Deep Neural Networks☆39Updated 5 years ago
- Code and Data for AisaCCS 2018 paper: Hardware Performance Counters Can Detect Malware: Myth or Fact?☆22Updated 5 months ago
- Technion CS Ransomware Project: Writing Windows Mini-Filter Driver to protect PC from Ransomware☆37Updated 4 years ago
- SEMA is based on angr, a symbolic execution engine used to extract API calls. Especially, we extend ANGR with strategies to create repr…☆119Updated 8 months ago
- WhiteRabbitTracker: Analyzing malware evasions with information flow tracking☆17Updated 4 years ago
- A Deep Learning ensemble that classifies Windows executable files as either benign, ransomware, or other malware.☆27Updated 6 years ago
- Source code on the 1.44MB 3.5 floppy accompanying the Windows NT File System Internals book.☆18Updated 6 years ago