hzqst/Syscall-Monitor hzqst/Syscall-Monitor

  • Stars
    star
    666
  • Rank 67,400 (Top 2 %)
  • Language POV-Ray SDL
  • License
    MIT License
  • Created over 7 years ago
  • Updated over 7 years ago
Twitter logo Share LinkedIn logo Share Facebook logo Share
hzqst/Syscall-Monitor
github

hzqst

Reviews

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

Repository Details

Syscall Monitor is a system monitor program (like Sysinternal's Process Monitor) using Intel VT-X/EPT for Windows7+

Syscall Monitor

Introduction

This is a process monitoring tool (like Sysinternal's Process Monitor) implemented with Intel VT-X/EPT for Windows 7+.

Develop Environment

  • Visual Studio 2015 update 3
  • Windows SDK 10
  • Windows Driver Kit 10
  • QT5.7 for MSVC

Deployment

  • QT GUI project: SyscallMonQT/SyscallMonQT.pro
  • Windows kernel driver project: ddimon/DdiMon/DdiMon.vcxproj
  • Remember to modify the shadow build path to /build32 or /build64 when configure the QT project
  • Remember to modify the windeploy.exe path in deploy32/deploy64.bat, run deploy32/64.bat to deploy x86/x64 binary files to bin32/bin64
  • Remember to sign the x64 kernel driver file

Platform

  • x86 and x64 Windows 7, 8.1 and 10
  • CPU with Intel VT-x and EPT technology support

Reference & Thanks

TODO

1.Optimize the memory usage issue.

Screenshots

load symbol main frame process view event info event filter filtered filterable attributes process info

More Repositories

1

VmwareHardenedLoader

Vmware Hardened VM detection mitigation loader (anti anti-vm)
C
1,216
star
2

unicorn_pe

Unicorn PE is an unicorn based instrumentation project designed to emulate code execution for windows PE files.
C
617
star
3

FuckCertVerifyTimeValidity

This tiny project prevents the signtool from verifing cert time validity and let you sign your bin with outdated cert without changing system time manually
C++
160
star
4

MetaHookSv

MetaHook (https://github.com/nagist/metahook) porting for SvEngine (GoldSrc engine modified by Sven-Coop)
C++
93
star
5

CGAssistantJS

CGAssistant is a helper for you to play CrossGate (中译:魔力宝贝) with highly automated game experience.
JavaScript
49
star
6

CGAssistant

CGAssistant is a helper for you to play CrossGate (中译:魔力宝贝) with highly automated game experience.
C++
48
star
7

MetaRenderer

C++
16
star
8

FortniteLama

This project exploits the lama bug from Fortnite Save the World that every times you quit SSD with +ALT+F4 you get 4 mini lama(s)
C++
12
star
9

CaptionMod

This is a caption/subtitle plugin designed for displaying captions/subtitles in GoldSRC engine & VGUI2 based singleplayer games.
C++
10
star
10

metamod-fallguys

It's a metamod plugin for Fall Guys maps in Sven Co-op
C
8
star
11

ForniteCNCrashFix

the driver fix a bug that Fornite Chinese server version always crash under Windows 10.
C++
4
star
12

Chicken-Fortress-3

Chicken Fortress 3 is a Half-Life mod that ported source game Team Fortress 2 to GoldSRC engine.
3
star
13

SteamAppsLocation

SteamAppsLocation is a simple program using Steam-Apps-Management-API to locate InstallDir for steam games.
C#
2
star
14

BindlessTextureMinimumDemo

Basically the title
C++
1
star
15

sven-fallguys

Fall Guys in Sven Co-op
1
star