C/C++ Performance Profiler
-
Updated
May 9, 2024 - C++
C/C++ Performance Profiler
Command line tracing tool for Windows, based on ETW.
KrabsETW provides a modern C++ wrapper and a .NET wrapper around the low-level ETW trace consumption functions.
系统监控开发套件(sysmon、procmon、edr、终端安全、主机安全、零信任、上网行为管理、沙箱)
ETWProcessMon2 is for Monitoring Process/Thread/Memory/Imageloads/TCPIP via ETW + Detection for Remote-Thread-Injection & Payload Detection by VirtualMemAlloc Events (in-memory) etc.
C# POC to extract NetNTLMv1/v2 hashes from ETW provider
Meterpreter_Payload_Detection.exe tool for detecting Meterpreter in memory like IPS-IDS and Forensics tool
Simple project that demonstrates how an ETW consumer can be created just by using NTDLL
A small real time SyncML protocol Viewer
.NET Logging adaptors
Command line tool to analyze one/many ETW file/s with simple queries for common issues.
Collects network traces of .NET applications.
Add a description, image, and links to the etw topic page so that developers can more easily learn about it.
To associate your repository with the etw topic, visit your repo's landing page and select "manage topics."