Syscall-Monitor

Forum for announcements and questions about tools and software.
Post Reply
p4r4n0id
Posts: 126
Joined: Thu Sep 22, 2011 11:36 am
Location: Israel
Contact:

Syscall-Monitor

Post by p4r4n0id » Thu Mar 23, 2017 3:28 pm

Hi,

Syscall Monitor is a system monitor program (like Sysinternal's Process Monitor) using Intel VT-X/EPT for Windows7+

https://github.com/hzqst/Syscall-Monitor

p4r4n0id
Keep Low. Move Fast. Kill First. Die Last. One Shot. One Kill. No Luck. Pure Skill.
http://p4r4n0id.com/

User avatar
Vrtule
Posts: 461
Joined: Sat Mar 13, 2010 9:14 pm
Location: Czech Republic
Contact:

Re: Syscall-Monitor

Post by Vrtule » Thu Mar 23, 2017 4:38 pm

Hehe, I am planning (or was, hard to say now) to do something similar to your tool (maybe with less focused on the GUI part) using probably the same resources for kernel hooking. :-)

Antelox
Posts: 241
Joined: Sun Mar 21, 2010 10:38 pm
Contact:

Re: Syscall-Monitor

Post by Antelox » Sat Mar 25, 2017 2:23 pm

Another good project here:

https://github.com/rabbitstack/fibratus

One of the most interesting feature is the yara scanning option.

BR,

Antelox

Post Reply