Command line tool to analyze one/many ETW file/s with simple queries for common issues.
☆128Mar 6, 2026Updated this week
Alternatives and similar repositories for ETWAnalyzer
Users that are interested in ETWAnalyzer are comparing it to the libraries listed below
Sorting:
- ☆48Updated this week
- Tool and library to convert ETW logs to JSON files☆91Sep 23, 2022Updated 3 years ago
- WMI Activity and Query Monitoring☆35Dec 14, 2022Updated 3 years ago
- INF Studio for easier working with driver installation files☆39Nov 11, 2023Updated 2 years ago
- Document ETW providers☆273Mar 28, 2020Updated 5 years ago
- ETW logging via C++☆21Nov 8, 2019Updated 6 years ago
- Various Windows Performance files, scripts, settings and documents☆39Aug 19, 2025Updated 6 months ago
- .NET library for logging data via EventSource/ETW☆88Nov 28, 2022Updated 3 years ago
- Sample script to patch WinRE☆10Feb 7, 2023Updated 3 years ago
- Cheat Engine alternative written in Rust☆12Nov 15, 2022Updated 3 years ago
- ☆17Jun 30, 2020Updated 5 years ago
- User interface for recording and managing ETW traces☆1,650May 28, 2025Updated 9 months ago
- Cross platform Windows PDB Reader for .NET Core to read windows pdb☆18Mar 14, 2020Updated 5 years ago
- Console application that creates an HTML report from a Windows user-mode dump file, using WinDBG or CDB debuggers. Although it's been mai…☆54Jun 1, 2025Updated 9 months ago
- Events from all manifest-based and mof-based ETW providers across Windows 10 versions☆329May 2, 2024Updated last year
- Host of debugging-related extensions such as post-mortem tools or WinDBG extensions☆219Nov 27, 2021Updated 4 years ago
- ☆13Jan 21, 2019Updated 7 years ago
- Read ETW Provider events. Inspired by ETWExplorer by Pavel Yosifovich☆18Jun 29, 2024Updated last year
- A pure PowerShell/ .NET DFIR capability that dumps the Windows SRUM (System Resource Usage Monitor) database to CSVs for analysis.☆14Oct 21, 2021Updated 4 years ago
- Portable Executable parsing library, used by PEExplorer. Also available as a nuget package☆36Jan 11, 2018Updated 8 years ago
- KrabsETW provides a modern C++ wrapper and a .NET wrapper around the low-level ETW trace consumption functions.☆753Dec 15, 2025Updated 2 months ago
- Java JNA wrapper for Parsec SDK☆14Mar 30, 2020Updated 5 years ago
- F# LL(k) Parser generator.☆12Oct 26, 2022Updated 3 years ago
- Use NtSetInformationThread(ThreadBreakOnTermination) for anti-debugging☆15Sep 21, 2019Updated 6 years ago
- ☆18Mar 28, 2023Updated 2 years ago
- HIDer allows you to manage HidGuardian in order to hide chosen controllers from being seen by games/applications.☆17Feb 16, 2018Updated 8 years ago
- Code analysis improvements and context actions☆64Feb 20, 2026Updated 2 weeks ago
- PerfMonX is an enhanced Performance Monitor tool☆45Aug 17, 2018Updated 7 years ago
- CPU Stress v3.0☆40Feb 5, 2024Updated 2 years ago
- Debug Print viewer (user and kernel)☆72Feb 7, 2024Updated 2 years ago
- Practical Tamper-Proof System Auditing☆15Oct 19, 2023Updated 2 years ago
- Hack tools coded in golang☆23Dec 19, 2023Updated 2 years ago
- View ETW Provider manifest☆575Nov 1, 2024Updated last year
- Trace events in real time sessions☆47Aug 25, 2023Updated 2 years ago
- This repo is obsolete. Please use Chickadee☆18Oct 26, 2019Updated 6 years ago
- PerfView is a CPU and memory performance-analysis tool☆4,642Feb 27, 2026Updated last week
- The tool to run command under a specified user account on Windows.☆81Mar 22, 2019Updated 6 years ago
- ☆181Apr 24, 2025Updated 10 months ago
- 0CCh Windbg extension: include some useful commands☆114Aug 1, 2023Updated 2 years ago