{"id":21532256,"url":"https://github.com/lifka/winprocessshot","last_synced_at":"2025-04-28T15:55:28.320Z","repository":{"id":245951184,"uuid":"819638720","full_name":"Lifka/WinProcessShot","owner":"Lifka","description":"Monitoring Windows processes tool for malware analysis. Inspired by Regshot tool.","archived":false,"fork":false,"pushed_at":"2024-06-24T23:27:32.000Z","size":3522,"stargazers_count":10,"open_issues_count":0,"forks_count":0,"subscribers_count":1,"default_branch":"main","last_synced_at":"2025-04-28T15:55:16.915Z","etag":null,"topics":["malware-analysis","monitoring-tool","processes"],"latest_commit_sha":null,"homepage":"","language":"C#","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":null,"status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/Lifka.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":null,"code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null}},"created_at":"2024-06-24T23:17:20.000Z","updated_at":"2025-03-29T16:12:57.000Z","dependencies_parsed_at":"2024-06-25T01:38:06.613Z","dependency_job_id":"3108c1ca-cec6-41ff-a341-f54ad61ba25e","html_url":"https://github.com/Lifka/WinProcessShot","commit_stats":null,"previous_names":["lifka/winprocessshot"],"tags_count":1,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Lifka%2FWinProcessShot","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Lifka%2FWinProcessShot/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Lifka%2FWinProcessShot/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Lifka%2FWinProcessShot/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/Lifka","download_url":"https://codeload.github.com/Lifka/WinProcessShot/tar.gz/refs/heads/main","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":251342720,"owners_count":21574244,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["malware-analysis","monitoring-tool","processes"],"created_at":"2024-11-24T02:19:15.982Z","updated_at":"2025-04-28T15:55:28.299Z","avatar_url":"https://github.com/Lifka.png","language":"C#","readme":"# WinProcessShot\n WinProcessShot is a simple and portable monitoring Windows processes tool for malware analysis. Its purpose is to show the processes that are created and terminated in the system during a period of time, recording certain information about them.\n\n## Features\n * Monitor created and finished processes. Three modes of use: monitoring, burst mode, and compare two different time instants.\n * Create memory dumps of new processes.\n * Recover a memory dump from a process that is no longer running.\n * Recover a sample that was captured running in the system and no longer exists.\n * Verify if a process has a valid signature or its hash is registered.\n * Filter processes.\n * Export results in JSON format.\n\n## Screenshots\n\n![WinProcessShot_0](Screenshots/WinProcessShot_0.PNG)\n![WinProcessShot_1](Screenshots/WinProcessShot_1.PNG)\n![WinProcessShot_2](Screenshots/WinProcessShot_2.PNG)\n![WinProcessShot_3](Screenshots/WinProcessShot_3.gif)\n\n\n## Copyright\n© 2024 Copyright: [javierizquierdovera.com](https://javierizquierdovera.com/).\nThis program is free software, you can redistribute it and/or modify it under the terms of [GPLv2](https://www.gnu.org/licenses/old-licenses/gpl-2.0.html).","funding_links":[],"categories":[],"sub_categories":[],"project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Flifka%2Fwinprocessshot","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Flifka%2Fwinprocessshot","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Flifka%2Fwinprocessshot/lists"}