Fibratus Logo

Fibratus

0
Free
Visit Website

Fibratus is a modern tool for Windows kernel exploration and observability with a focus on security. It allows trapping system-wide events like process life-cycle, file system I/O, registry modifications, and network requests, providing deep operational visibility into the Windows kernel and running processes. Events can be shipped to various output sinks or captured for local inspection and forensics analysis, with a powerful filtering engine and rules engine for threat detection. Users can extend Fibratus using filaments to leverage the Python ecosystem.

FEATURES

ALTERNATIVES

Android Loadable Kernel Modules for reversing and debugging on controlled systems/emulators.

A simple ransomware protection that intercepts and kills malicious processes attempting to delete shadow copies using vssadmin.exe.

Event Log Explorer is a software solution for viewing, analyzing, and monitoring events recorded in Microsoft Windows event logs, offering advanced features and efficient filtering capabilities.

Read-only FUSE driver for Apple File System with support for encrypted volumes and fusion drives on Linux.

CrowdStrike Falcon is a unified cybersecurity platform providing complete protection through its AI-native XDR platform.

Endpoint security platform using Moving Target Defense to prevent cyber attacks and provide adaptive exposure management and threat prevention.

Open-source tool for monitoring macOS hosts with detailed system activity insights.

Advanced malware scanning and removal tool that detects and removes various types of malware and offers additional protection with HitmanPro.Alert.

PINNED