Alternatives and similar repositories for ebpf-for-windows-demo

Users that are interested in ebpf-for-windows-demo are comparing it to the libraries listed below

• microsoft / usersim
  ☆91Updated this week
• microsoft / xdp-for-windows
  XDP speeds up networking on Windows
  ☆421Updated this week
• microsoft / SysinternalsEBPF
  The Linux port of the Sysinternals Sysmon tool.
  ☆275Updated last month
• microsoft / wdkmetadata
  Tooling to generate metadata for Win32 APIs in the Windows Driver Kit (WDK).
  ☆103Updated 6 months ago
• microsoft / tracelogging
  TraceLogging events and tracing
  ☆55Updated 3 months ago
• microsoft / ntosebpfext
  eBPF-For-Windows extension to provide access to Windows kernel functionality
  ☆30Updated last week
• EaseFilterSDK / mini-filter-driver-framework
  A mini filter driver development framework allows you to develop minit filter driver with different features.
  ☆58Updated 4 months ago
• zodiacon / TraceConnections
  Simple example for getting started with eBPF for Windows
  ☆47Updated 6 months ago
• microsoft / ndis-driver-library
  Code to make it easier to write an NDIS network driver on Windows
  ☆90Updated last year
• microsoft / mu_msvm
  VM firmware pkg for Project Mu
  ☆41Updated last month
• microsoft / Windows-Driver-Developer-Supplemental-Tools
  Supplemental open-source components for use in developing device drivers for Windows.
  ☆63Updated 3 weeks ago
• zodiacon / WFPExplorer
  Windows Filtering Platform Explorer
  ☆286Updated 7 months ago
• microsoft / SandboxSecurityTools
  Security testing tools for Windows sandboxing technologies
  ☆175Updated 3 months ago
• mullvad / libwfp
  C++ library for interacting with the Windows Filtering Platform (WFP)
  ☆96Updated 3 months ago
• microsoft / OHCL-Linux-Kernel
  OpenHCL Linux Kernel
  ☆15Updated last week
• zodiacon / TotalPE
  Yet another PE Viewer
  ☆143Updated 2 years ago
• microsoft / SysmonCommon
  The common parts of the Sysinternals Sysmon tool shared between the Windows and Linux versions.
  ☆64Updated 7 months ago
• microsoft / component-object-model-sample
  Sample code for Component Object Model (COM) setup and registration.
  ☆53Updated 6 months ago
• progmboy / openprocmon
  open source process monitor
  ☆287Updated 4 months ago
• forderud / RunInSandbox
  Launch Windows executables & COM servers in a sandboxed or elevated environment.
  ☆46Updated 2 months ago
• 0xeb / WinTools
  A collection of free miscellaneous Windows tools
  ☆137Updated last month
• repnz / etw-providers-docs
  Document ETW providers
  ☆246Updated 5 years ago
• lowleveldesign / comon
  A WinDbg extension to trace COM interactions
  ☆121Updated 2 weeks ago
• zodiacon / ApiSetView
  API Set Viewer
  ☆92Updated 7 months ago
• microsoft / win-net-test
  Networking related test tools for Windows. Relevant for anyone who is interested in Windows networking.
  ☆29Updated this week
• zodiacon / winsta
  Show Window Stations, Desktops and top level windows
  ☆16Updated 2 years ago
• 0mWindyBug / RansomGuard
  anti-ransomware file-system filter
  ☆61Updated 11 months ago
• TimMisiak / windup
  WinDbg installer/updater
  ☆41Updated 2 years ago
• zodiacon / sysrun
  Run any executable as SYSTEM account (no service required)
  ☆137Updated last year
• microsoft / eventtracing-processing-samples
  Sample code demonstrating use cases of the Microsoft.Windows.EventTracing.Processing.All nuget package.
  ☆48Updated last week