0xeb/WinTools external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

0xeb/WinTools

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/0xeb/WinTools)

Close

0xeb / WinToolsView on GitHubMore

• External links
• Readme badge

A collection of free miscellaneous Windows tools

☆143Jul 22, 2025Updated 10 months ago

Alternatives and similar repositories for WinTools

Users that are interested in WinTools are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• nasbench / EVTX-ETW-Resources

  View on GitHub
  Event Tracing For Windows (ETW) Resources
  ☆428Oct 30, 2025Updated 6 months ago
• repnz / etw-providers-docs

  View on GitHub
  Document ETW providers
  ☆299Mar 28, 2020Updated 6 years ago
• jdu2600 / Windows10EtwEvents

  View on GitHub
  Events from all manifest-based and mof-based ETW providers across Windows 10 versions
  ☆332May 2, 2024Updated 2 years ago
• zodiacon / EtwExplorer

  View on GitHub
  View ETW Provider manifest
  ☆600Nov 1, 2024Updated last year
• microsoft / krabsetw

  View on GitHub
  KrabsETW provides a modern C++ wrapper and a .NET wrapper around the low-level ETW trace consumption functions.
  ☆769Apr 14, 2026Updated last month
• GPU virtual machines on DigitalOcean Gradient AI • Ad
  Get to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
• dwmetz / Axiom-PowerShell

  View on GitHub
  PowerShell scripts to aid investigators when utilizing O365 and Magnet Axiom.
  ☆12Aug 26, 2024Updated last year
• mandiant / SilkETW

  View on GitHub
  ☆837Jun 1, 2023Updated 2 years ago
• EricZimmerman / Issues

  View on GitHub
  This is a repository for reporting any issues in any of my software
  ☆13May 15, 2018Updated 8 years ago
• Kaidja / Defender-for-Endpoint

  View on GitHub
  Defender for Endpoint
  ☆28Mar 28, 2026Updated last month
• rbmm / Noname

  View on GitHub
  really ?
  ☆12Feb 29, 2024Updated 2 years ago
• pathtofile / Sealighter

  View on GitHub
  Sysmon-Like research tool for ETW
  ☆389Nov 15, 2022Updated 3 years ago
• Biswa96 / TraceEvent

  View on GitHub
  Trace events in real time sessions
  ☆47Aug 25, 2023Updated 2 years ago
• silverf0x / RpcView

  View on GitHub
  RpcView is a free tool to explore and decompile Microsoft RPC interfaces
  ☆1,057Sep 24, 2023Updated 2 years ago
• microsoft / eventtracing-processing-samples

  View on GitHub
  Sample code demonstrating use cases of the Microsoft.Windows.EventTracing NuGet package.
  ☆52Sep 8, 2025Updated 8 months ago
• 1-Click AI Models by DigitalOcean Gradient • Ad
  Deploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
• Frenda / libScanHook

  View on GitHub
  ☆48Jun 19, 2017Updated 8 years ago
• S3cur3Th1sSh1t / NamedPipePTH

  View on GitHub
  Pass the Hash to a named pipe for token Impersonation
  ☆145May 1, 2021Updated 5 years ago
• cclgroupltd / chrome-profile-view

  View on GitHub
  Python web app for previewing data in a Chrome Profile Folder
  ☆26Jul 1, 2024Updated last year
• microsoft / ETW

  View on GitHub
  Event Tracing for Windows tools and samples
  ☆32Jan 20, 2025Updated last year
• csandker / RPCDump

  View on GitHub
  ☆85Jan 12, 2022Updated 4 years ago
• rbmm / SDD2

  View on GitHub
  Self delete DLL (2)
  ☆14Feb 15, 2024Updated 2 years ago
• vitoplantamura / BugChecker2002

  View on GitHub
  SoftICE-like debugger for Windows 2000 and XP. Archived.
  ☆21Dec 23, 2022Updated 3 years ago
• SadProcessor / EzETW

  View on GitHub
  Cmdlets for capturing Windows Events
  ☆14Mar 11, 2022Updated 4 years ago
• microsoft / windows_seh_tests

  View on GitHub
  Windows ABI Structured Exception Handling Tests
  ☆50May 8, 2025Updated last year
• Deploy on Railway without the complexity - Free Credits Offer • Ad
  Connect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
• ZehMatt / SnakeRoyal

  View on GitHub
  Multiplayer snake game written at a single weekend
  ☆13Jul 10, 2019Updated 6 years ago
• brokensound77 / toruk

  View on GitHub
  Crowdstrike Falcon Host script for iterating through instances to get alert and other relevant data
  ☆13Jul 16, 2019Updated 6 years ago
• rbmm / TL-TASK

  View on GitHub
  ☆19Sep 17, 2025Updated 8 months ago
• zodiacon / ProcMonXv2

  View on GitHub
  Process Monitor X v2
  ☆657Jan 22, 2024Updated 2 years ago
• HBelusca / NasuTek-Odyssey

  View on GitHub
  A Hobbyist Operating System based off the ReactOS/NT Kernel experimenting with OS Development.
  ☆31Jul 29, 2012Updated 13 years ago
• RegSeek / regseek.github.io

  View on GitHub
  Vault of Windows Registry forensic artifacts
  ☆30Nov 12, 2025Updated 6 months ago
• bgrundy / cheatsheets-forensic

  View on GitHub
  Forensic cheatsheets for use with cheat
  ☆15Dec 2, 2021Updated 4 years ago
• airbus-cert / Winshark

  View on GitHub
  A wireshark plugin to instrument ETW
  ☆585Jan 28, 2022Updated 4 years ago
• secrary / Hooking-via-InstrumentationCallback

  View on GitHub
  codes for my blog post: https://secrary.com/Random/InstrumentationCallback/
  ☆183Nov 30, 2017Updated 8 years ago
• Serverless GPU API endpoints on Runpod - Get Bonus Credits • Ad
  Skip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
• msuhanov / regf-samples

  View on GitHub
  Windows registry samples
  ☆24Nov 18, 2018Updated 7 years ago
• moaistory / WinSearchDBAnalyzer

  View on GitHub
  http://moaistory.blogspot.com/2018/10/winsearchdbanalyzer.html
  ☆132Jul 20, 2024Updated last year
• googleprojectzero / sandbox-attacksurface-analysis-tools

  View on GitHub
  Set of tools to analyze Windows sandboxes for exposed attack surface.
  ☆2,287Nov 6, 2025Updated 6 months ago
• DamonMohammadbagher / ETWNetMonv3

  View on GitHub
  ETWNetMonv3 is simple C# code for Monitoring TCP Network Connection via ETW & ETWProcessMon/2 is for Monitoring Process/Thread/Memory/Ima…
  ☆39Jun 6, 2023Updated 2 years ago
• tyranid / WindowsRpcClients

  View on GitHub
  This respository is a collection of C# class libraries which implement RPC clients for various versions of the Windows Operating System f…
  ☆286May 14, 2020Updated 6 years ago
• 0xrawsec / golang-etw

  View on GitHub
  ☆45Sep 22, 2022Updated 3 years ago
• zodiacon / WinSpy

  View on GitHub
  Enhanced version of the classic Spy++ tool
  ☆228Feb 26, 2026Updated 3 months ago