janstarke / evtxviewLinks
evtxview is a GUI viewer for Microsoft Windows evtx files (Windows event logs). I'm hacking this tiny tool because I need such a tool in most forensic investigations.
☆16Updated 5 years ago
Alternatives and similar repositories for evtxview
Users that are interested in evtxview are comparing it to the libraries listed below
Sorting:
- Dump certificates from PE files in different formats☆38Updated 2 years ago
- ☆29Updated 3 years ago
- A console debugger using DbgX and Terminal.Gui☆30Updated 3 years ago
- Brute Force password recovery for exported Windows PFX certificates☆17Updated 8 years ago
- ☆44Updated 2 years ago
- ☆19Updated 2 years ago
- BgInfo is a WPF variant on the Sysinternals BgInfo tool.☆32Updated 4 years ago
- Windows Detour Hooking in PowerShell☆80Updated last year
- Diff tool for comparing symbols in PDB files☆84Updated 5 years ago
- PerfMonX is an enhanced Performance Monitor tool☆44Updated 7 years ago
- Set of scripts for performance investigations on Windows.☆28Updated last week
- Auditing Hooks for https://github.com/jborean93/PSDetour☆13Updated 7 months ago
- ComPower is a Windows PowerShell module to work with the Component Object Model (COM).☆31Updated 11 years ago
- .NET wrapper for dbghelp.dll☆20Updated 6 years ago
- Managed wrappers around the Windows API and some Native API☆35Updated 7 years ago
- WinLogon I/O (LogonUI) Plugin for PowerRemoteDesktop☆28Updated 3 years ago
- A modified fork of Be.HexEditor for use in debug tools☆14Updated 3 years ago
- Automatic/Custom Destinations & LNK (MS-SHLLINK) Browser☆39Updated last year
- An attempt to create a friendly version of WinDbg☆105Updated 7 years ago
- PowerShell Over WMI☆16Updated 6 years ago
- Portable Executable parsing library, used by PEExplorer. Also available as a nuget package☆36Updated 7 years ago
- Analyzers for Portable Executable anomalies and other malware behavior.☆33Updated last year
- Viewing NTFS alternate streams in files☆33Updated 8 years ago
- This contains Helpful PYKD (Python Extension for Windbg) scripts☆49Updated 10 years ago
- Security testing tools for Windows sandboxing technologies☆179Updated 7 months ago
- AppLocker baseline configuration with the AaronLocker module. Used for testing with Windows 10, Intune etc.☆20Updated last month
- Win32 memory leak detector with ETW☆47Updated 7 years ago
- version 0.5.8☆17Updated 4 years ago
- WPF helper library☆14Updated 6 years ago
- Lightweight licensing library for .NET applications which allows the managing of licenses via web based scripts and on-the-fly code compi…☆15Updated 5 years ago