Alternatives and similar repositories for regfanalysistools

Users that are interested in regfanalysistools are comparing it to the libraries listed below

• cloudbase / HyperVPCapExt
  Hyper-V virtual switch packet capturing extension with libpcap / Wireshark format
  ☆13Updated 11 years ago
• apriorit / antirootkit-anti-splicer
  The project is a demo solution for one of the anti-rootkit techniques aimed on overcoming splicers
  ☆35Updated 8 years ago
• libyal / libfwevt
  Library for Windows XML Event Log (EVTX) data types
  ☆17Updated last year
• apriorit / Simple-Antirootkit-SST-Unhooker
  This is a demo project to illustrate the way to verify and restore original SST in case of some malware hooks
  ☆33Updated 8 years ago
• hailehong95 / practice-maldev
  Common Malware Techniques
  ☆13Updated 2 years ago
• AzureGreen / WinNT-Learning
  Notes my learning steps about Windows-NT
  ☆23Updated 8 years ago
• gerhart01 / HyperV-sockets
  Hyper-V sockets
  ☆29Updated 8 years ago
• ghonsa / DeviceDmp
  Windows device tree walker
  ☆15Updated 7 years ago
• zodiacon / ObjectBrowser
  An alternative tool to Sysinternals WinObj tool (nicer icons!)
  ☆37Updated 7 years ago
• Microwave89 / win7-x64-ndk
  Native Development Kit for Vista 64bit And Later, by me, Based on NDK Headers 1.0, by Alex Ionescu
  ☆17Updated 9 years ago
• after1990s / InjectSolution
  ☆12Updated 10 years ago
• OSRDrivers / deleteex
  Demonstrate the new FileDispositionInfoEx behavior
  ☆14Updated 7 years ago
• coldshell / IDA-appcall
  ☆13Updated 8 years ago
• tandasat / CheckSDL
  A tool evaluates security configurations of a given PE based on SDL without source code
  ☆15Updated 11 years ago
• wolk-1024 / WoW64Utils
  WoW64 -> x64
  ☆19Updated 9 years ago
• mq1n / ForceThreadSuspend
  Windows hidden thread suspend POC with code injection
  ☆12Updated 8 years ago
• Sha0 / winkexec
  Windows KExec
  ☆25Updated 15 years ago
• dgros / Malware_Analyzer
  Framework complet d'analyse de malware
  ☆12Updated 9 years ago
• Zurdo136 / OCD
  Windows Offline Crash Dump
  ☆17Updated 3 years ago
• yisonPylkita / powershell_cpp
  PowerShell interpreter for unmanaged (non CLI) C++ projects
  ☆16Updated 8 years ago
• JohnnyLChang / MBRProtector
  ☆14Updated 8 years ago
• changeofpace / Remote-Process-Cookie-for-Windows-7
  Obtain remote process cookies by performing a brute-force attack on ntdll.RtlDecodePointer using known pointer encodings.
  ☆22Updated 8 years ago
• 0xdabbad00 / OpenHIPS
  OpenHIPS prevents exploitation of Windows systems
  ☆35Updated 12 years ago
• dansdrivers / ndas4windows
  The Windows driver and device management program for NDAS devices such as the NetDISK.
  ☆16Updated 9 years ago
• pitercantropo / dd
  ☆15Updated 7 years ago
• ambray / Ntfs
  Various libraries focused on examining/parsing NTFS-specific structures
  ☆16Updated 10 years ago
• Cr4sh / IDA-UbiGraph
  IDA Pro plug-in and tools for displaying 3D graphs of procedures using UbiGraph
  ☆26Updated 12 years ago
• russellklenk / ETW
  Event Tracing for Windows Custom Events
  ☆21Updated 10 years ago
• Rprop / packetbuilder
  an efficient yet easy to use network packet builder and parser
  ☆11Updated 8 years ago
• conix-security / debug_inject
  Shellcode injection using debugging APIs
  ☆19Updated 11 years ago