0xeb/WinTools external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

0xeb/WinTools

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/0xeb/WinTools)

Close

0xeb / WinToolsView on GitHubMore

• External links
• Readme badge

A collection of free miscellaneous Windows tools

☆142Jul 22, 2025Updated 8 months ago

Alternatives and similar repositories for WinTools

Users that are interested in WinTools are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• nasbench / EVTX-ETW-Resources

  View on GitHub
  Event Tracing For Windows (ETW) Resources
  ☆421Oct 30, 2025Updated 4 months ago
• repnz / etw-providers-docs

  View on GitHub
  Document ETW providers
  ☆277Mar 28, 2020Updated 5 years ago
• jdu2600 / Windows10EtwEvents

  View on GitHub
  Events from all manifest-based and mof-based ETW providers across Windows 10 versions
  ☆330May 2, 2024Updated last year
• zodiacon / EtwExplorer

  View on GitHub
  View ETW Provider manifest
  ☆576Nov 1, 2024Updated last year
• microsoft / krabsetw

  View on GitHub
  KrabsETW provides a modern C++ wrapper and a .NET wrapper around the low-level ETW trace consumption functions.
  ☆755Mar 9, 2026Updated 2 weeks ago
• GPU virtual machines on DigitalOcean Gradient AI • Ad
  Get to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
• dwmetz / Axiom-PowerShell

  View on GitHub
  PowerShell scripts to aid investigators when utilizing O365 and Magnet Axiom.
  ☆12Aug 26, 2024Updated last year
• mandiant / SilkETW

  View on GitHub
  ☆826Jun 1, 2023Updated 2 years ago
• EricZimmerman / Issues

  View on GitHub
  This is a repository for reporting any issues in any of my software
  ☆13May 15, 2018Updated 7 years ago
• Kaidja / Defender-for-Endpoint

  View on GitHub
  Defender for Endpoint
  ☆28Jul 12, 2024Updated last year
• rbmm / Noname

  View on GitHub
  really ?
  ☆12Feb 29, 2024Updated 2 years ago
• pathtofile / Sealighter

  View on GitHub
  Sysmon-Like research tool for ETW
  ☆387Nov 15, 2022Updated 3 years ago
• Biswa96 / TraceEvent

  View on GitHub
  Trace events in real time sessions
  ☆47Aug 25, 2023Updated 2 years ago
• silverf0x / RpcView

  View on GitHub
  RpcView is a free tool to explore and decompile Microsoft RPC interfaces
  ☆1,049Sep 24, 2023Updated 2 years ago
• microsoft / eventtracing-processing-samples

  View on GitHub
  Sample code demonstrating use cases of the Microsoft.Windows.EventTracing NuGet package.
  ☆52Sep 8, 2025Updated 6 months ago
• GPU virtual machines on DigitalOcean Gradient AI • Ad
  Get to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
• Frenda / libScanHook

  View on GitHub
  ☆48Jun 19, 2017Updated 8 years ago
• cclgroupltd / chrome-profile-view

  View on GitHub
  Python web app for previewing data in a Chrome Profile Folder
  ☆24Jul 1, 2024Updated last year
• microsoft / ETW

  View on GitHub
  Event Tracing for Windows tools and samples
  ☆32Jan 20, 2025Updated last year
• csandker / RPCDump

  View on GitHub
  ☆85Jan 12, 2022Updated 4 years ago
• rbmm / SDD2

  View on GitHub
  Self delete DLL (2)
  ☆14Feb 15, 2024Updated 2 years ago
• vitoplantamura / BugChecker2002

  View on GitHub
  SoftICE-like debugger for Windows 2000 and XP. Archived.
  ☆21Dec 23, 2022Updated 3 years ago
• SadProcessor / EzETW

  View on GitHub
  Cmdlets for capturing Windows Events
  ☆14Mar 11, 2022Updated 4 years ago
• microsoft / windows_seh_tests

  View on GitHub
  Windows ABI Structured Exception Handling Tests
  ☆50May 8, 2025Updated 10 months ago
• ZehMatt / SnakeRoyal

  View on GitHub
  Multiplayer snake game written at a single weekend
  ☆13Jul 10, 2019Updated 6 years ago
• End-to-end encrypted cloud storage - Proton Drive • Ad
  Special offer: 40% Off Yearly / 80% Off First Month. Protect your most important files, photos, and documents from prying eyes.
• brokensound77 / toruk

  View on GitHub
  Crowdstrike Falcon Host script for iterating through instances to get alert and other relevant data
  ☆13Jul 16, 2019Updated 6 years ago
• rbmm / TL-TASK

  View on GitHub
  ☆19Sep 17, 2025Updated 6 months ago
• zodiacon / ProcMonXv2

  View on GitHub
  Process Monitor X v2
  ☆652Jan 22, 2024Updated 2 years ago
• HBelusca / NasuTek-Odyssey

  View on GitHub
  A Hobbyist Operating System based off the ReactOS/NT Kernel experimenting with OS Development.
  ☆30Jul 29, 2012Updated 13 years ago
• RegSeek / regseek.github.io

  View on GitHub
  Vault of Windows Registry forensic artifacts
  ☆28Nov 12, 2025Updated 4 months ago
• airbus-cert / Winshark

  View on GitHub
  A wireshark plugin to instrument ETW
  ☆580Jan 28, 2022Updated 4 years ago
• bgrundy / cheatsheets-forensic

  View on GitHub
  Forensic cheatsheets for use with cheat
  ☆15Dec 2, 2021Updated 4 years ago
• secrary / Hooking-via-InstrumentationCallback

  View on GitHub
  codes for my blog post: https://secrary.com/Random/InstrumentationCallback/
  ☆182Nov 30, 2017Updated 8 years ago
• msuhanov / regf-samples

  View on GitHub
  Windows registry samples
  ☆24Nov 18, 2018Updated 7 years ago
• Managed Database hosting by DigitalOcean • Ad
  PostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
• moaistory / WinSearchDBAnalyzer

  View on GitHub
  http://moaistory.blogspot.com/2018/10/winsearchdbanalyzer.html
  ☆127Jul 20, 2024Updated last year
• googleprojectzero / sandbox-attacksurface-analysis-tools

  View on GitHub
  Set of tools to analyze Windows sandboxes for exposed attack surface.
  ☆2,276Nov 6, 2025Updated 4 months ago
• DamonMohammadbagher / ETWNetMonv3

  View on GitHub
  ETWNetMonv3 is simple C# code for Monitoring TCP Network Connection via ETW & ETWProcessMon/2 is for Monitoring Process/Thread/Memory/Ima…
  ☆41Jun 6, 2023Updated 2 years ago
• 0xrawsec / golang-etw

  View on GitHub
  ☆45Sep 22, 2022Updated 3 years ago
• tyranid / WindowsRpcClients

  View on GitHub
  This respository is a collection of C# class libraries which implement RPC clients for various versions of the Windows Operating System f…
  ☆285May 14, 2020Updated 5 years ago
• pathtofile / SealighterTI

  View on GitHub
  Combining Sealighter with unpatched exploits to run the Threat-Intelligence ETW Provider
  ☆198Dec 6, 2022Updated 3 years ago
• zodiacon / WinSpy

  View on GitHub
  Enhanced version of the classic Spy++ tool
  ☆223Feb 26, 2026Updated 3 weeks ago