mtth-bfft / evtq
Windows eventlog formatting, live fetching and querying utility in C
☆18Updated 4 years ago
Alternatives and similar repositories for evtq:
Users that are interested in evtq are comparing it to the libraries listed below
- A technique for Active Directory domain persistence☆39Updated last year
- ☆36Updated 10 months ago
- example using NtCreateUserProcess in rust☆19Updated 3 months ago
- Asynchronous RDP/VNC client for Python (GUI)☆71Updated 3 months ago
- An insecurely implemented and installed Windows service for emulating elevation of privileges vulnerabilities☆58Updated 2 years ago
- Keep it secret, keep it safe☆77Updated 2 months ago
- A work in progress BOF/COFF loader in Rust☆47Updated 2 years ago
- ☆45Updated last year
- Donut generator in rust.☆26Updated 3 years ago
- An (WIP) EDR Evasion tool for x64 Windows & Linux binaries that utilizes Nanomites, written in Rust.☆18Updated 4 months ago
- Kerberos laboratory to better understand and then detecting attack on kerberos☆69Updated 3 years ago
- MiniDump a process in memory with rust☆36Updated 3 years ago
- Small tool to play with IOCs caused by Imageload events☆42Updated last year
- Playing with PE's and Building Structures by Hand☆22Updated 3 years ago
- PoCs and technical analysis of three vulnerabilities found on Cisco AnyConnect for Windows: CVE-2020-3433, CVE-2020-3434 and CVE-2020-343…☆43Updated 4 years ago
- Repo for The Crown: Exploratory Analysis of Nim Malware DEF CON 615 talk☆45Updated 3 years ago
- Rust Implementation of SharpDllProxy for DLL Proxying Technique☆30Updated 2 years ago
- PoC for detecting and evading ETW detection of .Net Assembly.Load☆20Updated 4 years ago
- quASAR: ASAR manipulation made easy☆37Updated 2 years ago
- A Large Action Model designed to operate on MacOS or Windows which interacts with common C2 interfaces such as Cobalt Strike, Havoc, or B…☆25Updated last year
- a tiny program to consume from ETW providers for research☆47Updated 3 months ago
- A .NET 4.8 application to retrieve delivr.to emails from Microsoft Outlook via COM☆20Updated 10 months ago
- This is a repo for fetching Applocker event log by parsing the win-event log☆30Updated 2 years ago
- Simple HTTP async comms using standard GET/POST requests☆33Updated last month
- Simple and sane cryptographic wrapper library.☆27Updated 2 years ago
- Shellcode reflective DLL injection in Rust☆19Updated last year
- Asynchronous NFSv3 client in pure Python☆26Updated last month
- Quickly search for references to a GUID in DLLs, EXEs, and drivers☆74Updated 3 years ago
- ☆75Updated 2 years ago
- all credits go to @mgeeky☆64Updated 3 years ago