RPC Monitor based on The ETW Microsoft-Windows-Rpc provider
☆24Mar 22, 2020Updated 6 years ago
Alternatives and similar repositories for rpcmon
Users that are interested in rpcmon are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Hardware-accelerated Windows screen sharing in C++☆12Jun 30, 2022Updated 3 years ago
- Impacket is a collection of Python classes for working with network protocols.☆11Jul 5, 2023Updated 2 years ago
- Windows CIFS/SMB packet generation and SMB networking library☆12Aug 25, 2020Updated 5 years ago
- My try to implement a virtual CPU in C☆19Nov 18, 2023Updated 2 years ago
- APC Internals Research Code☆169Jun 28, 2020Updated 5 years ago
- DTrace for Windows in userspace; Frontend to ETW☆27Oct 4, 2022Updated 3 years ago
- ☆12Jun 29, 2021Updated 4 years ago
- Play Doh Windows ACL Tools☆64Sep 7, 2022Updated 3 years ago
- neat way to detect memory read using nt layer function.☆13Aug 4, 2023Updated 2 years ago
- 通过WindowsAPI获取用户凭证,并保存到文件中☆194Jun 18, 2024Updated last year
- Easily hook WIN32 x64 functions☆18Feb 19, 2025Updated last year
- ETW-Almulahaza is a consumer python-based tool that help you monitor ETW events of the operating system☆13Jun 24, 2022Updated 3 years ago
- Listing UDP connections with remote address without sniffing.☆31Sep 26, 2023Updated 2 years ago
- Exploit Exercises for Security Researchers (arm, x86...)☆13May 10, 2019Updated 6 years ago
- Call arbitrary Windows kernel-mode functions from Python on another machine☆44Sep 17, 2021Updated 4 years ago
- All Nt Syscall and W32k Syscall in one asm, include, and call it!☆58Nov 4, 2021Updated 4 years ago
- Interprocess communication library, providing the ability to call functions from each other☆20Oct 3, 2019Updated 6 years ago
- ETWProcessMon2 is for Monitoring Process/Thread/Memory/Imageloads/TCPIP via ETW + Detection for Remote-Thread-Injection & Payload Detecti…☆320Mar 20, 2024Updated 2 years ago
- CloudHound is a cloudflare bypass tool which is using several methods such as DNS history Checkup, Cross-Site port Attack and etc to dete…☆20Apr 19, 2023Updated 2 years ago
- collection of links related to using and improving windbg☆20Jun 17, 2018Updated 7 years ago
- A driver that supports communication between a Windows guest and HyperWin☆15Jan 6, 2021Updated 5 years ago
- automates exploits using ROP chains, using ntdll-scraper☆16May 26, 2022Updated 3 years ago
- 参考taviso的代码逆向一下mpengine.dll☆20Jun 30, 2022Updated 3 years ago
- CVE-2021-33766-poc☆10Sep 15, 2021Updated 4 years ago
- Simple legit cheat☆12May 16, 2021Updated 4 years ago
- A generic WDF filter that can be loaded pretty much anywhere. As configured, this filter will instantiate as an upper filter of CD-ROM c…☆34Oct 29, 2020Updated 5 years ago
- linux kernel internals research details☆45Jan 9, 2024Updated 2 years ago
- Enumerate various traits from Windows processes as an aid to threat hunting☆202Jan 13, 2022Updated 4 years ago
- Enable-All-Tokens is a Go-based project designed to adjust and enable a list of specified privileges for the current process token on a W…☆10Apr 21, 2025Updated 11 months ago
- Perform DCSync operation without mimikatz☆155Nov 5, 2024Updated last year
- Load function names from an IDA Pro database inside GDB☆21Oct 20, 2018Updated 7 years ago
- XPN's RpcEnum but based on IDA instead of Ghidra☆21Aug 17, 2019Updated 6 years ago
- ☆12Aug 2, 2017Updated 8 years ago
- AutoIt Analysis Library: Parser & Emulator For Malware Researchers☆21Apr 27, 2019Updated 6 years ago
- ☆41Jun 6, 2021Updated 4 years ago
- The common parts of the Sysinternals Sysmon tool shared between the Windows and Linux versions.☆65Jan 26, 2026Updated last month
- An implementation of the Process Hollowing technique.☆16Dec 13, 2020Updated 5 years ago
- An IDA plugin to deal with Event Tracing for Windows (ETW)☆56Jul 8, 2022Updated 3 years ago
- ☆10Aug 26, 2021Updated 4 years ago