Monitor windows kernel event, based on etw, development in rust. A replacement of procmon. more events and useful filter. Typically can check handle leak for a few weeks.
-
Updated
Oct 22, 2025 - Rust
#
etw
Here are 4 public repositories matching this topic...
Event Tracing for Windows EDR bypass in Rust (usermode)
rust malware hacking pentesting etw malware-research pentest ethical-hacking red-team pentest-tool redteaming redteam edr ethical-hacking-tools redteam-tools edr-bypass edr-evasion etw-evasion etw-bypass
-
Updated
Jun 9, 2024 - Rust
TraceLogging events and tracing
-
Updated
May 16, 2025 - Rust
Improve this page
Add a description, image, and links to the etw topic page so that developers can more easily learn about it.
Add this topic to your repo
To associate your repository with the etw topic, visit your repo's landing page and select "manage topics."