Command line tool to analyze one/many ETW file/s with simple queries for common issues.
☆129Mar 6, 2026Updated 3 weeks ago
Alternatives and similar repositories for ETWAnalyzer
Users that are interested in ETWAnalyzer are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- ☆48Mar 7, 2026Updated 3 weeks ago
- Sample code demonstrating use cases of the Microsoft.Windows.EventTracing NuGet package.☆52Sep 8, 2025Updated 6 months ago
- WMI Activity and Query Monitoring☆36Dec 14, 2022Updated 3 years ago
- Tool and library to convert ETW logs to JSON files☆91Sep 23, 2022Updated 3 years ago
- Document ETW providers☆281Mar 28, 2020Updated 6 years ago
- Wordpress hosting with auto-scaling on Cloudways • AdFully Managed hosting built for WordPress-powered businesses that need reliable, auto-scalable hosting. Cloudways SafeUpdates now available.
- ProcessHollowing via csharp☆13Dec 21, 2021Updated 4 years ago
- CPU Stress v3.0☆40Feb 5, 2024Updated 2 years ago
- Host of debugging-related extensions such as post-mortem tools or WinDBG extensions☆219Nov 27, 2021Updated 4 years ago
- ETW logging via C++☆21Nov 8, 2019Updated 6 years ago
- Monitors ETW for security relevant syscalls maintaining the set called by each unique process☆89May 17, 2023Updated 2 years ago
- User interface for recording and managing ETW traces☆1,652May 28, 2025Updated 10 months ago
- Events from all manifest-based and mof-based ETW providers across Windows 10 versions☆332May 2, 2024Updated last year
- Read ETW Provider events. Inspired by ETWExplorer by Pavel Yosifovich☆18Jun 29, 2024Updated last year
- This is a repo for small, useful scripts and extensions☆259Jun 1, 2023Updated 2 years ago
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click and start building anything your business needs.
- Reversing and reimplementing "powercfg /requests" using Native API☆30Jul 25, 2024Updated last year
- This repository includes the parsers necessary for Microsoft Network Monitor to parse etl logs generated by Packet Monitor (Pktmon).☆22Aug 30, 2022Updated 3 years ago
- PowerShellMethodAuditor listens to the PowerShell ETW provider and logs PowerShell method invocations.☆37Sep 19, 2017Updated 8 years ago
- INF Studio for easier working with driver installation files☆39Nov 11, 2023Updated 2 years ago
- ☆10Dec 22, 2025Updated 3 months ago
- Windows Registry☆35Jul 14, 2025Updated 8 months ago
- Sample script to patch WinRE☆10Feb 7, 2023Updated 3 years ago
- Process inject technique "Thread hijacking" via csharp☆15Dec 18, 2021Updated 4 years ago
- KrabsETW provides a modern C++ wrapper and a .NET wrapper around the low-level ETW trace consumption functions.☆756Updated this week
- Open source password manager - Proton Pass • AdSecurely store, share, and autofill your credentials with Proton Pass, the end-to-end encrypted password manager trusted by millions.
- Use NtSetInformationThread(ThreadBreakOnTermination) for anti-debugging☆15Sep 21, 2019Updated 6 years ago
- IPC.Bond is an extension of IPC library that provides inter-process communication using shared memory on Windows with Bond serialization.☆30Aug 31, 2022Updated 3 years ago
- PerfView is a CPU and memory performance-analysis tool☆4,658Updated this week
- A pure PowerShell/ .NET DFIR capability that dumps the Windows SRUM (System Resource Usage Monitor) database to CSVs for analysis.☆14Oct 21, 2021Updated 4 years ago
- Console application that creates an HTML report from a Windows user-mode dump file, using WinDBG or CDB debuggers. Although it's been mai…☆54Jun 1, 2025Updated 9 months ago
- Trace events in real time sessions☆47Aug 25, 2023Updated 2 years ago
- A GUI version of the classic PoolMon tool☆121May 19, 2018Updated 7 years ago
- Lightweight CLI test runner for FsCheck☆12Apr 24, 2020Updated 5 years ago
- Roslyn based C# heap allocation diagnostic analyzer that can detect explicit and many implicit allocations like boxing, display classes a…☆17Jan 10, 2025Updated last year
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click and start building anything your business needs.
- Cross platform Windows PDB Reader for .NET Core to read windows pdb☆18Mar 14, 2020Updated 6 years ago
- AdaLight compatible adaptive backlight system for Windows 10.☆16May 21, 2024Updated last year
- Build script for a basic MDT install☆11Dec 7, 2015Updated 10 years ago
- Linux下的设备管理器(支持硬件信息检测、设备驱动安装和硬件性能测试)☆10Oct 22, 2013Updated 12 years ago
- ☆22Mar 26, 2025Updated last year
- ☆14Oct 20, 2021Updated 4 years ago
- A collection of free miscellaneous Windows tools☆142Jul 22, 2025Updated 8 months ago