Easefilter Process Filter Driver SDK is a kernel-mode driver that filters process/thread creation and termination, it provides you with an easy way to develop Windows applications for Windows process monitoring and protection. EaseFilter Process Filter Driver SDK enables your application to prevent untrusted executable binaries (malwares) from being launched, protecting your data from being damaged by untrusted processes. It also enables your application to get callback notifications for process/thread creation or termination, from the new process information you can get the parent process Id and thread Id of the new created process, you can also get the exact file name used to open the executable file and the commandline used to execute the process if it is available.