kkoha / EvtxCarv
recovers and reconstructs fragmented Evtx files from disk images, memory dumps, pagefiles and unallocated space
☆13Updated 9 years ago
Related projects ⓘ
Alternatives and complementary repositories for EvtxCarv
- Handy WMI query tool.☆12Updated 8 years ago
- Windows device tree walker☆15Updated 6 years ago
- Windows Kernel Mode PCRE☆10Updated 9 years ago
- Windows registry files interactive viewer☆9Updated 7 years ago
- Common Malware Techniques☆13Updated last year
- Lists work items being queued currently.☆12Updated 9 years ago
- Tunnel IP through DNS for fun and profit (aka stealing hotel wifi)☆6Updated 3 months ago
- ☆9Updated 10 years ago
- A project dedicated towards researching the Windows operating system's kernel mode enviornment.☆8Updated 8 years ago
- Obtain remote process cookies by performing a brute-force attack on ntdll.RtlDecodePointer using known pointer encodings.☆21Updated 7 years ago
- Dark Cloud Virus☆7Updated 7 years ago
- windows内核小工具,包含APP和driver☆11Updated 9 years ago
- simple plugin for lastest olly versions to display the callstack☆15Updated 11 years ago
- Native Development Kit for Vista 64bit And Later, by me, Based on NDK Headers 1.0, by Alex Ionescu☆16Updated 8 years ago
- hooking KiUserApcDispatcher☆22Updated 7 years ago
- wow64 syscall filter☆13Updated 9 years ago
- ☆7Updated 6 years ago
- Google Drive windows virtual unit☆9Updated 11 years ago
- does reflective dll injection☆8Updated 10 years ago
- Event Tracing for Windows Custom Events☆21Updated 9 years ago
- XEDParse extension for windbg☆7Updated 7 years ago
- ☆11Updated 9 years ago
- Framework complet d'analyse de malware☆12Updated 8 years ago
- Malwarebytes Antivirus CVE☆8Updated 6 years ago
- ☆7Updated 8 years ago
- windows ntfs legasy file system filter☆0Updated 8 years ago
- ☆13Updated 7 years ago