ETWNetMonv3 is simple C# code for Monitoring TCP Network Connection via ETW & ETWProcessMon/2 is for Monitoring Process/Thread/Memory/Imageloads/TCPIP via ETW + Detection for Remote-Thread-Injection & Payload Detection by VirtualMemAlloc Events (in-memory) etc.
☆39Jun 6, 2023Updated 3 years ago
Alternatives and similar repositories for ETWNetMonv3
Users that are interested in ETWNetMonv3 are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- NativePayload_TiACBT (Remote Thread Injection + C# Async Method + CallBack Functions Technique)☆12Jun 6, 2023Updated 3 years ago
- ETWProcessMon2 is for Monitoring Process/Thread/Memory/Imageloads/TCPIP via ETW + Detection for Remote-Thread-Injection & Payload Detecti…☆320Mar 20, 2024Updated 2 years ago
- ☆16Mar 1, 2019Updated 7 years ago
- ☆22Jul 9, 2019Updated 6 years ago
- ☆51Sep 18, 2020Updated 5 years ago
- Managed Kubernetes at scale on DigitalOcean • AdDigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
- Server Protection monitors various system resources to detect brute force login attempts. Integrates with the Windows Firewall or Linux i…☆12Dec 8, 2022Updated 3 years ago
- Out-of-the-Box Tool to Obfuscate Excel XLS. Include Obfuscation & Hide for Cell Labels & BoundSheets☆47Aug 4, 2021Updated 4 years ago
- ☆25Mar 3, 2019Updated 7 years ago
- C# code to run PIC using CreateThread☆17Apr 19, 2019Updated 7 years ago
- Easily hook WIN32 x64 functions☆18Feb 19, 2025Updated last year
- ☆73Oct 24, 2021Updated 4 years ago
- An open source GPU monitoring tool written in C++ and C#. Not meant as a replacement for Fraps but designed to be used by developers and …☆12Feb 9, 2018Updated 8 years ago
- ProcessHollowing via csharp☆13Dec 21, 2021Updated 4 years ago
- x64HOOK库☆17Jan 14, 2020Updated 6 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- Code for the solutions of practical reverse engineering☆23Jan 17, 2020Updated 6 years ago
- A PoC designed to bypass all usermode hooks in a WoW64 environment.☆149Sep 16, 2020Updated 5 years ago
- Launch a Windows EXE file with this EXE file (application filter evasion)☆14Mar 10, 2017Updated 9 years ago
- Windows Server 2K3 NT 5☆12Apr 17, 2021Updated 5 years ago
- 新的注入方式☆11Sep 30, 2018Updated 7 years ago
- Some source code to demonstrate avoiding certain direct syscall detections by locating and JMPing to a legitimate syscall instruction wit…☆218Feb 20, 2023Updated 3 years ago
- ☆11Dec 28, 2021Updated 4 years ago
- C# program to take a full size screenshot or a recording of the user's desktop. Takes in 0-3 flags☆82Oct 2, 2020Updated 5 years ago
- x64 assembler library☆31Jun 7, 2024Updated 2 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- intel vt-x hypervisor ept☆24May 19, 2020Updated 6 years ago
- POC code to crash Windows Event Logger Service☆27Oct 16, 2020Updated 5 years ago
- .NET project for writing files to local or remote hosts☆43Jan 27, 2020Updated 6 years ago
- MappingInjection via csharp☆39Nov 19, 2021Updated 4 years ago
- Inject shellcode into process via "EarlyBird"☆27Aug 30, 2021Updated 4 years ago
- A list of IOCs applicable to PoshC2☆24Aug 3, 2020Updated 5 years ago
- I used this to see if an EDR is running in Safe Mode☆36Feb 13, 2021Updated 5 years ago
- AMSI Bypass Via the Heap☆107Nov 20, 2020Updated 5 years ago
- findLoop - find possible encryption/decryption or compression/decompression code☆29Mar 30, 2019Updated 7 years ago
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- Meterpreter_Payload_Detection.exe tool for detecting Meterpreter in memory like IPS-IDS and Forensics tool☆164Jun 5, 2023Updated 3 years ago
- NativePayload_CallBackTechniques C# Codes (Code Execution via Callback Functions Technique, without CreateThread Native API)☆117Jun 7, 2023Updated 3 years ago
- All Nt Syscall and W32k Syscall in one asm, include, and call it!☆58Nov 4, 2021Updated 4 years ago
- Quick script to view members on Fetlife and create a list of them☆16Mar 17, 2026Updated 3 months ago
- Fake SMB and SAMR data☆11Oct 27, 2019Updated 6 years ago
- Data Exfiltration via HTTP Traffic (C# and Shell Script)☆16Jun 5, 2023Updated 3 years ago
- BasicEventViewer4 (BEV v4.0), this code will useful for All Blue/Purple Teams , RealTime Monitoring Sysmon Events , Mitre Attack Detectio…☆18Jun 22, 2023Updated 2 years ago