libyal / libfwevtLinks
Library for Windows XML Event Log (EVTX) data types
☆18Updated 8 months ago
Alternatives and similar repositories for libfwevt
Users that are interested in libfwevt are comparing it to the libraries listed below
Sorting:
- Common Malware Techniques☆13Updated 2 years ago
- ☆24Updated 5 years ago
- ☆22Updated 4 years ago
- ☆16Updated 7 years ago
- Shellcode injection using debugging APIs☆19Updated 11 years ago
- it's a simple LKM rootkit.☆12Updated 8 years ago
- ☆45Updated 7 years ago
- Simple tool to use LsaManageSidNameMapping get LSA to add or remove SID to name mappings.☆23Updated 4 years ago
- Kernel mode windows NT API logger☆22Updated 5 years ago
- C++ WinSock2 PCAP with RDI☆13Updated 8 years ago
- A new binary injection technique, can easily go through any #CIG protected process and slip through all possible defenses without any inj…☆18Updated 7 years ago
- InsecurePowerShellHost is a .NET Core host process for InsecurePowerShell, a version of PowerShell Core v6.0.0 with key security features…☆31Updated 7 years ago
- Dumps information about all the callback objects found in a dump file and the functions registered for them☆36Updated 4 years ago
- Notepad++ Syntax Highlighting for Languages Used by Cyber Security Professionals☆14Updated 5 years ago
- Code injection via delay load libraries☆35Updated 7 years ago
- Enumerate all processes and get specified file's handle,then close it.☆11Updated 6 years ago
- ☆11Updated 4 years ago
- An opensource API hooking framework☆22Updated 5 years ago
- Post-explotation Hacks☆14Updated 6 years ago
- ☆31Updated 4 years ago
- ☆17Updated 5 years ago
- Auto Inject Dll , it have three method to inject your custom dll. help you to test inject.☆11Updated 9 years ago
- A demo implementation of a well-known technique used by some malware to evade userland hooking, using my library: libpeconv.☆19Updated 7 years ago
- Win32k Elevation of Privilege Poc☆1Updated 6 years ago
- Self-Loading Registration Free COM Functions☆11Updated 5 years ago
- Windows x64 Process Scanner to detect application compatability shims☆37Updated 6 years ago
- ☆10Updated 7 years ago
- Injection of MSIL using Cecil☆12Updated 9 years ago
- Run Managed Assemblies with RunDll☆17Updated 6 years ago
- ☆10Updated 10 years ago