Alternatives and similar repositories for TraceConnections:

Users that are interested in TraceConnections are comparing it to the libraries listed below

• zodiacon / VerifierDLL
  Example of building an application verifer DLL
  ☆45Updated 9 months ago
• zodiacon / RemoteThreadDetection
  Remote Thread Detection with a Kernel Driver
  ☆29Updated 2 months ago
• m417z / x64dbg-symbol-tldr
  An x64dbg plugin which helps make sense of long C++ symbols
  ☆59Updated last year
• zodiacon / KObjects
  Sample for Creating a new kernel object type and supporting API
  ☆23Updated 6 months ago
• benheise / ANGRYORCHARD
  A kernel exploit leveraging NtUserHardErrorControl to elevate a thread to KernelMode and achieve arbitrary kernel R/W & more.
  ☆26Updated 2 years ago
• SamuelTulach / SecureGame
  Proof-of-concept game using VBS enclaves to protect itself from cheating
  ☆39Updated 4 months ago
• zodiacon / winnativeapibooksamples
  Samples from my book Windows Native API programming
  ☆60Updated this week
• 0mWindyBug / RansomGuard
  anti-ransomware file-system filter
  ☆57Updated 6 months ago
• gerhart01 / Hyper-V-Tools
  Different tools for Microsoft Hyper-V researching
  ☆49Updated 9 months ago
• dmaivel / ntoseye
  Windows kernel debugger for Linux hosts running Windows under KVM/QEMU
  ☆71Updated 5 months ago
• worawit / malk
  Demonstrate calling a kernel function and handle process creation callback against HVCI
  ☆51Updated 2 years ago
• rad9800 / RansomFS
  ☆29Updated last month
• jonaslyk / temp
  ☆70Updated 2 years ago
• gabriellandau / ShadowStackWalk
  Finding Truth in the Shadows
  ☆89Updated 2 years ago
• je5442804 / CreateProcessInternalW-Full
  Reimplement CreateProcessInternalW via Windows 10 20H1+/Windows 11 Base on NtCreateUserProcess-Post
  ☆56Updated 6 months ago
• rbmm / TPM
  Easy encrypt/decrypt data with TPM
  ☆25Updated last year
• DebugPrivilege / WindowsAP1
  Code samples that serve as references for Windows API functions
  ☆30Updated 10 months ago
• Dump-GUY / sc2pe
  Simple dotnet Native AOT app that uses AsmResolver to convert shellcode to PE
  ☆65Updated last year
• m417z / LdrDllNotificationHook
  Hook all callbacks which are registered with LdrRegisterDllNotification
  ☆85Updated 2 years ago
• zodiacon / objdir-rs
  Rust version of the objdir tool
  ☆12Updated last year
• jdu2600 / Etw-SyscallMonitor
  Monitors ETW for security relevant syscalls maintaining the set called by each unique process
  ☆73Updated last year
• zodiacon / youtubecode
  Youtube channel sample code
  ☆48Updated last week
• backengineering / pdbgen2
  Generate a PDB file given the old PDB file and an address mapping
  ☆42Updated 2 weeks ago
• 3itch / checkm8
  bypassing intel txt's tboot integrity checks via coreboot shim
  ☆64Updated 2 weeks ago
• zodiacon / WMIExplorer
  ☆15Updated 7 months ago
• jonomango / pe-builder
  Header-only C++ library for producing PE files.
  ☆31Updated last year
• zodiacon / WinEventHooks
  SetWinEventHook Sample
  ☆46Updated last year
• Internet-2-0 / Malcore-x64dbg
  This x64dbg plugin allows you to upload your sample to Malcore and view the results.
  ☆33Updated last year
• rbmm / NtDetours
  Detours implementation (x64/x86) which used only ntdll import
  ☆90Updated 9 months ago
• t-tani / defender2yara
  Convert Microsoft Defender Antivirus Signatures (VDM) into YARA rules
  ☆47Updated this week