Alternatives and similar repositories for regfanalysistools

Users that are interested in regfanalysistools are comparing it to the libraries listed below

• OSRDrivers / deleteex
  Demonstrate the new FileDispositionInfoEx behavior
  ☆14Updated 7 years ago
• zodiacon / AccessMask
  ☆20Updated 5 years ago
• ZaneLogi / DevConWin
  A tool to investigate the Windows device manager
  ☆14Updated 6 years ago
• zodiacon / ObjDir
  Simple command line version of Sysinternals WinObj. Currently just lists object names and types given an object manager directory.
  ☆20Updated last year
• rbmm / SearchEx
  D00
  ☆6Updated 4 years ago
• zodiacon / SrvDrv
  Services and Drivers control application
  ☆19Updated 7 years ago
• mq1n / ForceThreadSuspend
  Windows hidden thread suspend POC with code injection
  ☆12Updated 8 years ago
• zodiacon / ErrorLookup
  Simple error lookup for Win32 and NTSTATUS errors
  ☆19Updated 6 years ago
• libyal / libfwevt
  Library for Windows XML Event Log (EVTX) data types
  ☆18Updated 8 months ago
• cloudbase / HyperVPCapExt
  Hyper-V virtual switch packet capturing extension with libpcap / Wireshark format
  ☆12Updated 11 years ago
• AzureGreen / WinNT-Learning
  Notes my learning steps about Windows-NT
  ☆23Updated 8 years ago
• tandasat / CheckSDL
  A tool evaluates security configurations of a given PE based on SDL without source code
  ☆14Updated 10 years ago
• apriorit / antirootkit-anti-splicer
  The project is a demo solution for one of the anti-rootkit techniques aimed on overcoming splicers
  ☆34Updated 8 years ago
• zodiacon / InfStudio
  INF Studio for easier working with driver installation files
  ☆38Updated last year
• Darkabode / amte
  Analysis and Modification Tool for Executables
  ☆16Updated 6 years ago
• DownWithUp / WhoCalls_C
  WhoCalls can query a directory of files, find the binaries, and search for a user specified Win API import. It and works with both 32-bit…
  ☆17Updated 2 years ago
• killswitch-GUI / IsDebuggerPresent
  Debugger checks in 3 ways
  ☆20Updated 7 years ago
• xenserver / win-xenvif
  XenServer Windows Virtual Network Interface Device Driver
  ☆12Updated 7 years ago
• zodiacon / winsta
  Show Window Stations, Desktops and top level windows
  ☆15Updated 2 years ago
• MortenSchenk / Privilege_Shellcode
  Kernel Shellcode to add all privileges in token
  ☆13Updated 8 years ago
• pstolarz / scriptext
  WinDbg scripting language utilities.
  ☆11Updated 4 years ago
• Sha0 / winkexec
  Windows KExec
  ☆25Updated 15 years ago
• nihilus / patchdiff3
  Continuation of the popular patchdiff IDA plugin
  ☆10Updated 10 years ago
• weixu8 / RegistryMonitor
  Formely KMon, a Windows Kernel Driver designed to prevent malware attacks by monitoring the creation of registry keys in common autorun l…
  ☆21Updated 11 years ago
• after1990s / InjectSolution
  ☆12Updated 10 years ago
• ghonsa / DeviceDmp
  Windows device tree walker
  ☆15Updated 6 years ago
• 0xcpu / exthost
  A POC for Windows Extension Host hooking
  ☆22Updated 5 years ago
• yisonPylkita / powershell_cpp
  PowerShell interpreter for unmanaged (non CLI) C++ projects
  ☆16Updated 7 years ago
• DissectMalware / WinNativeIO
  Using Undocumented NTDLL Functions to Read/Write/Delete File
  ☆18Updated 4 years ago
• floomby / injector
  does reflective dll injection
  ☆8Updated 11 years ago