Ruxcon2016 POC Code
☆141Nov 21, 2016Updated 9 years ago
Alternatives and similar repositories for Ruxcon2016ETW
Users that are interested in Ruxcon2016ETW are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- KrabsETW provides a modern C++ wrapper and a .NET wrapper around the low-level ETW trace consumption functions.☆772Apr 14, 2026Updated 2 months ago
- PowerShell Empire module for logging USB keystrokes via ETW☆31Nov 11, 2016Updated 9 years ago
- https://jimshaver.net/2018/02/22/net-over-net-breaking-the-boundaries-of-the-net-framework/☆19Feb 23, 2018Updated 8 years ago
- Example of real-time Windows ETW packet capture session☆55Jul 12, 2017Updated 8 years ago
- ☆30May 23, 2017Updated 9 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- ☆22Jul 7, 2017Updated 8 years ago
- ☆83Jan 29, 2016Updated 10 years ago
- ☆12Feb 19, 2017Updated 9 years ago
- Framework for Making Environmental Keyed Payloads (NO LONGER SUPPORTED)☆764Jan 28, 2019Updated 7 years ago
- ☆221Apr 2, 2018Updated 8 years ago
- Portable utility to check if a machine has been infected by Shamoon2☆15Jan 13, 2017Updated 9 years ago
- Sysmon-Like research tool for ETW☆392Nov 15, 2022Updated 3 years ago
- Command-line tool for ETW tracing on files and real-time events☆148Feb 27, 2019Updated 7 years ago
- just manipulatin these here tokens yes sir nothing weird☆21Apr 18, 2022Updated 4 years ago
- Managed Kubernetes at scale on DigitalOcean • AdDigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
- A sample project for using Capstone from a driver in Visual Studio 2015☆37May 4, 2016Updated 10 years ago
- Recon 2015 Presentation from Alex Ionescu☆251Jan 27, 2016Updated 10 years ago
- Incident Response & Digital Forensics Debugging Extension☆398Dec 11, 2018Updated 7 years ago
- codes for my blog post: https://secrary.com/Random/InstrumentationCallback/☆183Nov 30, 2017Updated 8 years ago
- My solutions for random crackmes and other challenges☆12Dec 23, 2019Updated 6 years ago
- Combining Sealighter with unpatched exploits to run the Threat-Intelligence ETW Provider☆205Dec 6, 2022Updated 3 years ago
- Powershell Persistence Locator☆67Sep 11, 2016Updated 9 years ago
- ☆18Jan 27, 2018Updated 8 years ago
- Historical Windows temporal memory-state research artifact for studying time-bound memory observations, validation limits, and defensive …☆907May 15, 2026Updated last month
- GPUs on demand by Runpod - Special Offer Available • AdRun AI, ML, and HPC workloads on powerful cloud GPUs—without limits or wasted spend. Deploy GPUs in under a minute and pay by the second.
- ☆10Mar 30, 2016Updated 10 years ago
- A tool to help when dealing with Windows IOCTL codes or reversing Windows drivers.☆439Aug 22, 2018Updated 7 years ago
- DiskCryptor - it's a free solution that allows you to encrypt disk partitions, including system partition.☆17Dec 7, 2011Updated 14 years ago
- ☆842Jun 1, 2023Updated 3 years ago
- AllMemPro☆46Jan 15, 2018Updated 8 years ago
- Tool to view and create Microsoft shim database files (SDB).☆120May 11, 2017Updated 9 years ago
- ☆52Sep 17, 2018Updated 7 years ago
- RunPE dump - I wrote this to have better control over the analysis of malwares. I can stop and analysis malware when it uses some of the …☆10Jul 1, 2015Updated 10 years ago
- Finding Truth in the Shadows☆129Jan 26, 2023Updated 3 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- Intel-Process communitation☆10Feb 27, 2017Updated 9 years ago
- View ETW Provider manifest☆605Nov 1, 2024Updated last year
- Event Tracing for Windows Custom Events☆21Jan 28, 2015Updated 11 years ago
- Archive Mirror for recently republished PoC/Exploit code☆20Nov 26, 2017Updated 8 years ago
- ☆13Jun 20, 2013Updated 12 years ago
- Simple project that demonstrates how an ETW consumer can be created just by using NTDLL☆148Feb 23, 2019Updated 7 years ago
- Events from all manifest-based and mof-based ETW providers across Windows 10 versions☆332May 2, 2024Updated 2 years ago