Thread: DrvMon
View Single Post
  #1  
Old 07-10-2022, 01:57
Fyyre's Avatar
Fyyre Fyyre is offline
Fyyre
  
Join Date: Dec 2009
Location: 0°N 0°E / 0°N 0°E / 0; 0
Posts: 295
Rept. Given: 106
Rept. Rcvd 93 Times in 44 Posts
Thanks Given: 203
Thanks Rcvd at 397 Times in 130 Posts
Fyyre Reputation: 93
DrvMon
Hello,

Today I published a tool that hfiref0x (EP_X0FF) and I made starting in 2010.

It still works today. It allows one to capture drivers that load and selectively block or select to block loading of drivers.

It is a good tool for capturing malware that tries to load drivers. The last update was in 2017.

https://github.com/Fyyre/DrvMon

If someone finds it helpful, wonderful.

Sincerely,
Fyyre
__________________
Pax in vultu, bellum in corde.

--

https://github.com/Fyyre
Reply With Quote
The Following 5 Users Gave Reputation+1 to Fyyre For This Useful Post:
chessgod101 (07-10-2022), tonyweb (07-23-2022), TQN (07-10-2022), WRP (07-10-2022), yoza (07-14-2022)
The Following 16 Users Say Thank You to Fyyre For This Useful Post:
besoeso (07-10-2022), binarylaw (07-15-2022), chessgod101 (07-10-2022), Doit (07-11-2022), Hypnz (07-17-2022), Mahmoudnia (07-11-2022), niculaita (07-10-2022), p4r4d0x (07-14-2022), sh3dow (09-23-2022), shetal (12-27-2022), SinaDiR (07-10-2022), tonyweb (07-23-2022), user1 (07-10-2022), WRP (07-10-2022), yoza (07-14-2022), Zeokat (07-11-2022)