Go library for ETW (Event Tracing for Windows) events processing
☆73Jul 13, 2022Updated 3 years ago
Alternatives and similar repositories for etw
Users that are interested in etw are comparing it to the libraries listed below
Sorting:
- ☆44Sep 22, 2022Updated 3 years ago
- Windows Management Instrumentation (WMI) for Go☆14Aug 6, 2020Updated 5 years ago
- Transfer file over Dns☆10Nov 26, 2024Updated last year
- easy dll proxying in go☆14Apr 24, 2022Updated 3 years ago
- DPX - the Doge Packer for eXecutables☆30Dec 21, 2021Updated 4 years ago
- Reflective DLL injection Execution☆20Sep 9, 2022Updated 3 years ago
- Various shell code I have written☆17Oct 9, 2020Updated 5 years ago
- ☆48May 12, 2021Updated 4 years ago
- Document ETW providers☆272Mar 28, 2020Updated 5 years ago
- GoSDDL converter☆11Apr 30, 2019Updated 6 years ago
- Provides a multi-platform Graphical User Interface for hashlookup☆12Jul 12, 2024Updated last year
- Port of Mandiant ShellcodeHashes plugin from IDA to BinaryNinja☆11Jul 24, 2024Updated last year
- ☆26Dec 29, 2021Updated 4 years ago
- Golang wrappers functions to call Windows APIs☆83Aug 9, 2022Updated 3 years ago
- clean interface for the windows event log☆26Jun 8, 2024Updated last year
- ☆13Dec 27, 2014Updated 11 years ago
- Shellcode execution for memflow☆13Apr 11, 2022Updated 3 years ago
- A malicious .cab creation tool for CVE-2021-40444☆13Sep 12, 2021Updated 4 years ago
- A Golang API for TheHive☆13Sep 3, 2020Updated 5 years ago
- Freaking Injector is a tool which made for injecting dlls into other processes in Windows x64 systems with bunch of diffrent injection me…☆11Dec 3, 2020Updated 5 years ago
- go实现windows计划任务管理,过杀软☆13Aug 26, 2021Updated 4 years ago
- A *very* imperfect attempt to correlate Kernel32 function calls to native API (Nt/Zw) counterparts/execution flow.☆28Dec 16, 2021Updated 4 years ago
- A repository hosting example goodware evtx logs containing sample software installation and basic user interaction☆86Dec 17, 2025Updated 2 months ago
- Event Tracing For Windows (ETW) Resources☆417Oct 30, 2025Updated 4 months ago
- Run Processes as PPL with ELAM☆177Mar 17, 2022Updated 3 years ago
- Broctl plugin for automatically executing 'setcap' on each node after an install☆13Dec 18, 2020Updated 5 years ago
- hooks gServerHandlers xxxEventWndProc☆13May 1, 2022Updated 3 years ago
- Documentation and tools to curate Sigma rules for Windows event logs into easier to parse rules.☆16Oct 22, 2025Updated 4 months ago
- Golang parser for OLE files☆33Dec 4, 2025Updated 3 months ago
- Fork & modify of Wireguard's Memmod☆33Aug 2, 2023Updated 2 years ago
- ☆13Apr 6, 2016Updated 9 years ago
- A Golang Registry parser☆19Feb 3, 2025Updated last year
- Repository to place any and all scripts made to solve CTF challenges. Why solve what's already been solved?☆13Nov 12, 2023Updated 2 years ago
- Dockerfiles for containerized osquery☆14May 23, 2017Updated 8 years ago
- A collection of shellcode hashes☆17Aug 15, 2018Updated 7 years ago
- A proof-of-concept tool that attempts to retrieve the configuration from the memory dump of an F-Secure C3 Relay executable.☆17Jul 2, 2021Updated 4 years ago
- ☆13Jul 15, 2021Updated 4 years ago
- automates exploits using ROP chains, using ntdll-scraper☆16May 26, 2022Updated 3 years ago
- go-server 是一个用 Go 语言编写的简单而灵活的服务器框架,旨在帮助开发者快速构建基于 TCP 和 UDP 协议的 socket 网络服务。☆14Dec 8, 2025Updated 2 months ago