stellarbear / YaraSharp
C# wrapper around the Yara pattern matching library
☆39Updated 3 years ago
Alternatives and similar repositories for YaraSharp:
Users that are interested in YaraSharp are comparing it to the libraries listed below
- .NET wrapper for libyara built in C++ CLI used to easily incorporate yara into .NET projects☆53Updated 6 months ago
- CmdDesktopSwitch is a small utility that lists all windows desktops and provides the option to switch between them. This can be used to i…☆34Updated 8 years ago
- An example pattern in C# for using WMI to monitor process creation and termination events.☆52Updated 6 years ago
- A multi-platform .Net wrapper library for the native Yara library.☆38Updated last year
- The evolution of NxRansomware☆10Updated 5 years ago
- Framework for C# development☆72Updated this week
- Bare template for a Kernel Mode Driver☆51Updated 4 years ago
- ☆63Updated last month
- Implementation of the .NET Profiler DLL hijack in C#☆98Updated 6 years ago
- A simple utility to list all methods of a given .NET Assembly and to invoke them☆73Updated 3 years ago
- Small visualizator for PE files☆67Updated last year
- .NET executable packer☆61Updated 6 years ago
- Simple packer for arbitrary data using only .NET API calls. Produces a unique signature with every usage. Standalone program and library.…☆90Updated 5 years ago
- Mario & Luigi - Tools for sniffing Windows Named Pipes communication☆129Updated 8 years ago
- JITM is an automated tool to bypass the JIT Hooking protection on a .NET sample.☆50Updated 4 years ago
- Learning Process Injection and Hollowing techniques☆41Updated 2 years ago
- Uses WMI Event Win32_ModuleLoadTrace to monitor module loading. Provides filters, and detailed data. Has an option to monitor for CLR Inj…☆40Updated 5 years ago
- C# Exe that can remotely retrieve C# assemblies for in-memory execution☆19Updated 5 years ago
- Library of tools and examples for loading/bootstrapping managed code from unmanaged code in .NET☆62Updated 5 years ago
- A small library helping to parse commandline parameters (for C/C++)☆54Updated last year
- A Microsoft Windows service to provide telemetry on Windows executable memory page changes to facilitate threat detection☆31Updated 4 years ago
- A manual system call library that supports functions from both ntdll.dll and win32u.dll☆107Updated last year
- Explore .NET Processes and Dump files☆116Updated 4 years ago
- $MFT parser (from live systems or a copy of the $MFT) and raw file copy utility☆36Updated 6 months ago
- AlphaFS is a .NET library providing more complete Win32 file system functionality to the .NET platform than the standard System.IO classe…☆10Updated 3 years ago
- PoC: Prevent a debugger from attaching to managed .NET processes via a watcher process code pattern.☆32Updated 6 years ago
- Dump certificates from PE files in different formats☆38Updated last year
- DotNext 2019 St. Petersburg Talk Demos☆38Updated 5 years ago
- ☆23Updated last year
- .NET wrapper for dbghelp.dll☆21Updated 5 years ago