Example of real-time Windows ETW packet capture session
☆54Jul 12, 2017Updated 8 years ago
Alternatives and similar repositories for etwrealtime
Users that are interested in etwrealtime are comparing it to the libraries listed below
Sorting:
- Library for ETW, ProcessTracker sample based on ETW☆34Mar 15, 2017Updated 8 years ago
- Notes my learning steps about Windows-NT☆23May 18, 2017Updated 8 years ago
- Event Tracing for Windows Custom Events☆21Jan 28, 2015Updated 11 years ago
- ShellcodeVM☆15Jun 20, 2016Updated 9 years ago
- Windows Kernel Debugger over Network (Wireshark dissector and maybe more)☆29Jan 28, 2019Updated 7 years ago
- ☆14Jan 10, 2017Updated 9 years ago
- WinPCAP for NDIS 6.x☆14Jun 24, 2019Updated 6 years ago
- Plugin for Process Hacker 2 ( https://github.com/processhacker2 ), displays system hooks and able to unhook too.☆52Jan 1, 2018Updated 8 years ago
- The internal Windows structures hack to create the in-process private ETW session☆14Feb 22, 2017Updated 9 years ago
- ☆17Mar 3, 2016Updated 9 years ago
- analyze the content of the pe file on windows, and shell(pack) function for windows drivers.☆11Nov 9, 2018Updated 7 years ago
- ☆16Nov 10, 2015Updated 10 years ago
- Lists work items being queued currently.☆14Jun 7, 2015Updated 10 years ago
- Hook IDT vector 0xb2 to detect SCI in 64bit windows.☆34Aug 27, 2022Updated 3 years ago
- Diff tool for comparing export tables in PE images☆24Mar 4, 2020Updated 5 years ago
- A dns server that use to hijack other dns request in a wifi network for redirect to your custem http server ..☆20Jun 25, 2015Updated 10 years ago
- Debugger extension for the Debugging Tools for Windows (WinDbg, KD, CDB, NTSD).☆69Nov 14, 2016Updated 9 years ago
- AllMemPro☆46Jan 15, 2018Updated 8 years ago
- ☆14Oct 19, 2016Updated 9 years ago
- ☆19Jul 20, 2015Updated 10 years ago
- Tool that dumps beacon frames to a pcap file. Works on Windows Vista or Later with any Wireless Card.☆27Mar 19, 2022Updated 3 years ago
- A simple API monitor for Windbg☆65Apr 22, 2017Updated 8 years ago
- This is a demo project to illustrate the way to verify and restore original SST in case of some malware hooks☆33Mar 2, 2017Updated 9 years ago
- Win32 API Hook偵測☆10Oct 1, 2017Updated 8 years ago
- An open source GPU monitoring tool written in C++ and C#. Not meant as a replacement for Fraps but designed to be used by developers and …☆12Feb 9, 2018Updated 8 years ago
- Open-Source Anti-RMT-Spam Firewall☆12Mar 28, 2016Updated 9 years ago
- Windows hidden thread suspend POC with code injection☆12May 27, 2017Updated 8 years ago
- Simple project that demonstrates how an ETW consumer can be created just by using NTDLL☆146Feb 23, 2019Updated 7 years ago
- The project was upgraded from https://coder.pub/ and supported VS2017. The original author wrote the detailed design ideas documentation…☆20Sep 18, 2017Updated 8 years ago
- Detect the SCI in windows.☆11Mar 23, 2017Updated 8 years ago
- Common Malware Techniques☆13Mar 26, 2023Updated 2 years ago
- more at http://www.zer0mem.sk/?p=271☆12Jun 11, 2013Updated 12 years ago
- libdt is part of the "Huorong eXtendible Stream Scan Engine" project copyright by Huorong Borui (Beijing) Technology Co., Ltd.☆14Aug 17, 2015Updated 10 years ago
- [Not work] Deobfuscate obfuscated binaries!☆11Dec 16, 2016Updated 9 years ago
- Hidden module/dll detector for windows apps☆15May 21, 2017Updated 8 years ago
- ☆13Jun 20, 2013Updated 12 years ago
- A trainer engine template used in gamehacking and cheating.☆15Jun 15, 2014Updated 11 years ago
- Automatically exported from code.google.com/p/wskudp☆43Feb 3, 2016Updated 10 years ago
- Obtain remote process cookies by performing a brute-force attack on ntdll.RtlDecodePointer using known pointer encodings.☆22May 31, 2017Updated 8 years ago