Alternatives and similar repositories for WTF-WFP:

Users that are interested in WTF-WFP are comparing it to the libraries listed below

• jsecurity101 / MSFT_DriverBlockList
  Repository of Microsoft Driver Block Lists based off of OS-builds
  ☆39Updated 10 months ago
• nccgroup / mimikatz-detector-condrv
  The Console Monitor Driver is a KMDF kernel-mode filter driver that captures certain Fast I/O operations (input and output) that is sent …
  ☆37Updated 2 years ago
• MotiBa / AppLocker
  AppLocker hardening policies
  ☆25Updated 6 years ago
• jborean93 / PSDetour
  Windows Detour Hooking in PowerShell
  ☆78Updated 8 months ago
• jsecurity101 / LDAPMon
  ☆45Updated last year
• kacos2000 / Prefetch-Browser
  Browse Windows Prefetch versions: 17,23,26,30v1/2,31 & some of SuperFetch .7db/.db's
  ☆59Updated 2 months ago
• mattifestation / WDACPolicies
  A collection of Windows software baseline notes with corresponding Windows Defender Application Control (WDAC) policies
  ☆62Updated last year
• RemiEscourrou / PowerShellMisc
  ☆35Updated 2 years ago
• canix1 / SDDL-Converter
  Tool to convert SDDL to readable text
  ☆40Updated 6 years ago
• DebugPrivilege / WindowsAP1
  Code samples that serve as references for Windows API functions
  ☆30Updated 8 months ago
• nasbench / procmon-malware-analysis-filters
  Repository containing malware analysis filters for the Windows SysInternals' - Process Monitor tool
  ☆15Updated 4 years ago
• jdu2600 / Get-InjectedThreadEx
  Fork of Get-InjectedThread - https://gist.github.com/jaredcatkinson/23905d34537ce4b5b1818c3e6405c1d2
  ☆29Updated last year
• airbus-cert / ntTraceControl
  Powershell Event Tracing Toolbox
  ☆73Updated 2 years ago
• MathildeVenault / SysMainView
  This tool is the result of a reverse engineering process of the Windows service called SysMain. Time to interact with the prefetch files …
  ☆30Updated 4 years ago
• jsecurity101 / PowerParse
  PowerShell PE Parser
  ☆61Updated 7 months ago
• SygniaLabs / BackupKeyManager
  ☆11Updated 7 months ago
• 0xeb / WinTools
  A collection of free miscellaneous Windows tools
  ☆129Updated 5 months ago
• jakehildreth / adcs-snippets
  Just a bunch of code snippets to identify and remediate common Active Directory Certificate Services issues.
  ☆32Updated last year
• kacos2000 / WinEDB
  Windows.EDB Browser
  ☆54Updated last year
• commial / LiveDiffAD
  AD Live changes viewer
  ☆35Updated last year
• WildByDesign / WDACTrayTool
  System Tray Tool for WDAC
  ☆32Updated 3 weeks ago
• trailofbits / WinDbg-JS
  ☆23Updated last year
• olafhartong / PockETWatcher
  a tiny program to consume from ETW providers for research
  ☆46Updated last month
• Harvester57 / CodeIntegrity-DriverBlocklist
  ☆20Updated 3 weeks ago
• nturley3 / zeek-kerberos-haters-guide
  Kerberos Haters Guide to Zeek Threat Hunting
  ☆25Updated 3 years ago
• kacos2000 / Evtx_Log_Browser
  Evtx Log (xml) Browser
  ☆56Updated last year
• naksyn / talks
  Repo containing my public talks
  ☆23Updated last year
• jdu2600 / API-To-ETW
  Uses ghidra to find all ETW write metadata for each API in a PE file
  ☆15Updated 6 months ago
• RemiEscourrou / Invoke-Leghorn
  Leghorn code for PKI abuse
  ☆32Updated 3 years ago