C/C++ Performance Profiler
-
Updated
Jun 6, 2024 - C++
C/C++ Performance Profiler
Command line tracing tool for Windows, based on ETW.
KrabsETW provides a modern C++ wrapper and a .NET wrapper around the low-level ETW trace consumption functions.
系统监控开发套件(sysmon、procmon、edr、终端安全、主机安全、零信任、上网行为管理、沙箱)
ETWProcessMon2 is for Monitoring Process/Thread/Memory/Imageloads/TCPIP via ETW + Detection for Remote-Thread-Injection & Payload Detection by VirtualMemAlloc Events (in-memory) etc.
C# POC to extract NetNTLMv1/v2 hashes from ETW provider
Meterpreter_Payload_Detection.exe tool for detecting Meterpreter in memory like IPS-IDS and Forensics tool
A small real time SyncML protocol Viewer
Simple project that demonstrates how an ETW consumer can be created just by using NTDLL
.NET Logging adaptors
Command line tool to analyze one/many ETW file/s with simple queries for common issues.
Collects network traces of .NET applications.
Add a description, image, and links to the etw topic page so that developers can more easily learn about it.
To associate your repository with the etw topic, visit your repo's landing page and select "manage topics."