From Collaborative RCE Tool Library

Jump to: navigation, search

Install Monitoring Tools


Tool name: All-Seeing Eye
Rating: 0.0 (0 votes)
Author: Fortego Security                        
Website: http://www.fortego.com/en/ase.html
Current version: 0.7.1
Last updated: 2007
Direct D/L link: http://www.fortego.com/resources/ase071.zip
License type: Free
Description: Tool for automated diff-style checking of many sensitive system areas that malware and other programs often try to modify silently. Like Tripwire on speed.
Also listed in: File System Diff Tools, Registry Monitoring Tools, System Diff Tools
More details: Click here for more details, screenshots, related URLs & comments for this tool! (or to update its entry)



Tool name: SysAnalyzer
Rating: 0.0 (0 votes)
Author: David Zimmer (iDefense Labs)                        
Website: http://labs.idefense.com/files/labs/releases/previews/SysAnalyzer/
Current version:
Last updated: January 19, 2007
Direct D/L link: http://labs.idefense.com/software/download/?downloadID=15
License type: GPL2
Description: SysAnalyzer is an automated malcode run time analysis application that monitors various aspects of system and process states. SysAnalyzer was designed to enable analysts to quickly build a comprehensive report as to the actions a binary takes on a system. SysAnalyzer can automatically monitor and compare:

* Running Processes
* Open Ports
* Loaded Drivers
* Injected Libraries
* Key Registry Changes
* APIs called by a target process
* File Modifications
* HTTP, IRC, and DNS traffic

SysAnalyzer also comes with a ProcessAnalyzer tool which can perform the following tasks:

* Create a memory dump of target process
* parse memory dump for strings
* parse strings output for exe, reg, and url references
* scan memory dump for known exploit signatures

Full GPL source for SysAnalyzer is included in the installation package.
Also listed in: Disk Monitoring Tools, Registry Monitoring Tools, Network Monitoring Tools, API Monitoring Tools, File Monitoring Tools, Memory Dumpers
More details: Click here for more details, screenshots, related URLs & comments for this tool! (or to update its entry)



Tool name: Winalysis
Rating: 0.0 (0 votes)
Author:                         
Website: http://www.winalysis.com
Current version: 3.1
Last updated: January 13, 2006
Direct D/L link: Locally archived copy
License type: Shareware
Description: Winalysis is a software application that can help you manage change on computers running Windows. The program can:

Make compressed Snapshots of local and remote computer configurations. Test for changes from snapshots at any time.

Monitor for changes to files, the registry, users, groups, security policies, services, shares, scheduled jobs, the system environment and more.

Monitor remote computers from a central location. There is no need to install Winalysis on the remote machines.

Restore files and/or the registry from compressed snapshots with the ability to undo a restore at any time.
Also listed in: System Diff Tools
More details: Click here for more details, screenshots, related URLs & comments for this tool! (or to update its entry)


RSS feed Feed containing all updates and additions for this category.

RSS feed Feed containing all updates and additions for this category, including sub-categories.


Retrieved from "http://www.woodmann.com/collaborative/tools/index.php/Category:Install_Monitoring_Tools"



Views
Category Navigation Tree
RCE Tools
   Categorized by Target Type  (98)
   .NET Tools  (24)
   COM Tools  (9)
   DVD Movie Logic Tools  (1)
   DirectX Tools  (3)
   Dongle Tools  (8)
   Flash Tools  (3)
   FoxPro Tools  (4)
   Installer Tools  (8)
   Install Monitoring Tools  (3)
   Installer Decompilers  (2)
   Installer Extraction Tools  (3)
   Java Tools  (3)
   Javascript Tools  (2)
   Linux Tools  (16)
   Malware Analysis Tools  (1)
   Mobile Platform Tools  (4)
   Specific by Compiler  (3)
   Symbian Tools  (2)
   Visual Basic Tools  (4)
   Web Application Tools  (3)
   Categorized by Tool Type  (626)
   Anti Anti Test Tools  (8)
   Assemblers  (14)
   Code Coverage Tools  (9)
   Code Injection Tools  (17)
   Code Ripping Tools  (1)
   Crypto Tools  (2)
   Data Extraction Tools  (14)
   Debuggers  (26)
   Decompilers  (13)
   Deobfuscation Tools  (5)
   Dependency Analyzer Tools  (3)
   Diff Tools  (26)
   Disassemblers  (25)
   Dongle Tools  (8)
   Exe Analyzers  (22)
   Firefox Extensions  (1)
   GUI Manipulation Tools  (9)
   Hex Editors  (10)
   Kernel Tools  (5)
   Memory Data Tracing Tools  (6)
   Memory Patchers  (3)
   Memory Search Tools  (6)
   Monitoring Tools  (68)
   API Monitoring Tools  (10)
   Active Directory Monitoring Tools  (1)
   Bus Monitoring Tools  (1)
   Debug Output Monitoring Tools  (1)
   Disk Monitoring Tools  (2)
   Exception Monitoring Tools  (3)
   File Monitoring Tools  (3)
   Install Monitoring Tools  (3)
   Memory Data Tracing Tools  (6)
   Named Pipe Monitoring Tools  (1)
   Network Monitoring Tools  (5)
   Parallel Comm Monitoring Tools  (1)
   Process Monitoring Tools  (4)
   Registry Monitoring Tools  (6)
   Serial Comm Monitoring Tools  (1)
   SysCall Monitoring Tools  (5)
   Thread Monitoring Tools  (2)
   Tracers  (10)
   Window Monitoring Tools  (3)
   Network Tools  (12)
   PE Executable Editors  (42)
   Packers  (10)
   Patch Packaging Tools  (6)
   Profiler Tools  (9)
   Programming Libraries  (23)
   Regular Expression Tools  (3)
   Resource Editors  (7)
   Reverse Engineering Frameworks  (7)
   Source Code Tools  (11)
   String Finders  (5)
   Symbol Tools  (5)
   System Information Extraction Tools  (4)
   Technical PoC Tools  (3)
   Test and Sandbox Environments  (12)
   Tool Extensions  (103)
   Tool Hiding Tools  (1)
   Tool Signatures  (19)
   Tracers  (10)
   Unpacking Tools  (33)
   Needs New Category