Alternatives and similar repositories for ETWMonitor:

Users that are interested in ETWMonitor are comparing it to the libraries listed below

• p0dalirius / ldap2json
  The ldap2json script allows you to extract the whole LDAP content of a Windows domain into a JSON file.
  ☆130Updated 5 months ago
• ProcessusT / vulnspy
  VULNSPY regularly retrieves the latest alerts published by the CERT-FR and the related vulnerabilities with their CVSS score and allows y…
  ☆38Updated 2 years ago
• ANSSI-FR / ORADAZ
  Outil de récupération automatique des données AZure / Automated tool for dumping Azure configuration data
  ☆19Updated last week
• soufianetahiri / RansomwareSimulator.public
  Ransomware simulator written in C#
  ☆36Updated 2 years ago
• ANSSI-FR / guide-journalisation-microsoft
  Guide journalisation Microsoft
  ☆60Updated 9 months ago
• ProcessusT / Dictofuscation
  Obfuscate the bytes of your payload with an association dictionary
  ☆34Updated 5 months ago
• ricardojoserf / SharpCovertTube
  Youtube as C2 channel - Control Windows systems uploading QR videos to Youtube
  ☆89Updated 10 months ago
• akamai / Invoke-DHCPCheckup
  ☆103Updated last year
• AetherBlack / abuseACL
  A python script to automatically list vulnerable Windows ACEs/ACLs.
  ☆53Updated 4 months ago
• mlcsec / FormThief
  Spoofing desktop login applications with WinForms and WPF
  ☆173Updated last year
• Elymaro / PassTester
  Identify the accounts most vulnerable to dictionary attacks
  ☆119Updated 3 weeks ago
• ProcessusT / MasterKeyBrute
  Bruteforce DPAPI encrypted MasterKey File from Windows Credentials Manager
  ☆19Updated 3 months ago
• LuemmelSec / Client-Checker
  ☆174Updated 4 months ago
• amjcyber / EDRNoiseMaker
  Detect WFP filters blocking EDR communications
  ☆86Updated last year
• ProcessusT / Bypass-AV-DirectSyscalls
  Scripts permettant de contourner la protection antivirale de Windows Defender via la technique de Direct Syscalls avec une injection de s…
  ☆27Updated 2 years ago
• Semperis / GoldenGMSA
  GolenGMSA tool for working with GMSA passwords
  ☆145Updated last year
• icyguider / NewPowerDNS
  Updated version of PowerDNS by @domchell. Adds support for transfers over DNS A records and a few other useful features.
  ☆83Updated 2 years ago
• ignacioj / WhacAMole
  Live memory analysis detecting malware IOCs in processes, modules, handles, tokens, threads, .NET assemblies, memory address space and en…
  ☆40Updated 7 months ago
• sadshade / veeam-creds
  Collection of scripts to retrieve stored passwords from Veeam Backup
  ☆126Updated 4 months ago
• trustedsec / DitExplorer
  Tool for viewing NTDS.dit
  ☆155Updated last month
• lkarlslund / deploy-goad
  Script to install prerequisites for deploying GOAD on Ubuntu Linux 22.04
  ☆111Updated 10 months ago
• synacktiv / ntdissector
  ☆139Updated 8 months ago
• Leo4j / Invoke-SessionHunter
  Retrieve and display information about active user sessions on remote computers. No admin privileges required.
  ☆183Updated 8 months ago
• HuskyHacks / SharpTokenFinder
  C# implementation of TokenFinder. Steal M365 access tokens from Office Desktop apps
  ☆139Updated 9 months ago
• synacktiv / Invoke-RunAsWithCert
  A PowerShell script to perform PKINIT authentication with the Windows API from a non domain-joined machine.
  ☆150Updated 11 months ago
• DrunkF0x / ADSpider
  Monitor changes in Active Directory with replication metadata
  ☆89Updated 9 months ago
• mallo-m / AxiomLoader
  Shellcode loader based on indirect syscall
  ☆22Updated 2 months ago
• S12cybersecurity / RDPCredentialStealer
  RDPCredentialStealer it's a malware that steal credentials provided by users in RDP using API Hooking with Detours in C++
  ☆245Updated last year
• Orange-Cyberdefense / graphcat
  Generate graphs and charts based on password cracking result
  ☆160Updated 2 years ago
• ThePorgs / Exegol-images
  Docker images of the Exegol project
  ☆105Updated this week