Alternatives and similar repositories for evtq:

Users that are interested in evtq are comparing it to the libraries listed below

• netwrix / server-untrust-account
  A technique for Active Directory domain persistence
  ☆39Updated last year
• skelsec / aardwolfgui
  Asynchronous RDP/VNC client for Python (GUI)
  ☆67Updated 2 weeks ago
• thefLink / Hunt-Weird-ImageLoads
  Small tool to play with IOCs caused by Imageload events
  ☆42Updated last year
• thalpius / Microsoft-Defender-for-Identity-Encrypted-Password
  ☆35Updated 7 months ago
• jsecurity101 / LDAPMon
  ☆45Updated last year
• postrequest / safetydump
  MiniDump a process in memory with rust
  ☆36Updated 3 years ago
• RomaissaAdjailia / Get-AppLockerEventlog
  This is a repo for fetching Applocker event log by parsing the win-event log
  ☆30Updated 2 years ago
• latortuga71 / SharpChisel-NG
  ☆35Updated last year
• limbenjamin / nTimetools
  Timestomper and Timestamp checker with nanosecond accuracy for NTFS volumes
  ☆47Updated 3 years ago
• melotic / nanostorm
  An (WIP) EDR Evasion tool for x64 Windows & Linux binaries that utilizes Nanomites, written in Rust.
  ☆16Updated last month
• eladshamir / BadWindowsService
  An insecurely implemented and installed Windows service for emulating elevation of privileges vulnerabilities
  ☆55Updated 2 years ago
• aancw / DllProxy-rs
  Rust Implementation of SharpDllProxy for DLL Proxying Technique
  ☆29Updated 2 years ago
• jfmaes / DeepSleep
  all credits go to @mgeeky
  ☆59Updated 3 years ago
• vysecurity / OffensiveLAM
  A Large Action Model designed to operate on MacOS or Windows which interacts with common C2 interfaces such as Cobalt Strike, Havoc, or B…
  ☆26Updated 10 months ago
• 0xTriboulet / ZeroTotal
  A collection of source code, binaries, and compilation scripts designed to bypass detection
  ☆25Updated 2 years ago
• codewhitesec / SysmonEnte
  ☆71Updated 2 years ago
• matterpreter / FindETWProviderImage
  Quickly search for references to a GUID in DLLs, EXEs, and drivers
  ☆69Updated 3 years ago
• ignacioj / WhacAMole
  Live memory analysis detecting malware IOCs in processes, modules, handles, tokens, threads, .NET assemblies, memory address space and en…
  ☆33Updated 3 months ago
• jborean93 / LocalKdc
  Info on how to use Kerberos KDC on a non-domain joined host
  ☆39Updated 5 months ago
• Teach2Breach / NtCreateUserProcess_rs
  example using NtCreateUserProcess in rust
  ☆17Updated last month
• olafhartong / PockETWatcher
  a tiny program to consume from ETW providers for research
  ☆45Updated 2 weeks ago
• huntandhackett / sysmon-indepth
  Understanding the operation and limitations of Sysmon's events
  ☆14Updated 2 years ago
• commial / LiveDiffAD
  AD Live changes viewer
  ☆35Updated last year
• secur30nly / rust-herpaderping
  Rust implementation of the Process Herpaderping
  ☆24Updated last year
• 17ms / airborne
  Shellcode reflective DLL injection in Rust
  ☆18Updated 10 months ago
• djhohnstein / HookDetector
  Playing with PE's and Building Structures by Hand
  ☆22Updated 2 years ago
• RemiEscourrou / PowerShellMisc
  ☆35Updated 2 years ago
• riesha / drv-vuln-scanner
  Finds imports that could be exploited, still requires manual analysis.
  ☆27Updated 2 years ago
• Alh4zr3d / PowerShell-via-CSharp
  A simple C# program to unhook AMSI and execute unmanaged PowerShell.
  ☆19Updated 3 years ago