etw

Monitor windows kernel event, based on etw, development in rust. A replacement of procmon. more events and useful filter. Typically can check handle leak for a few weeks.

windows process-monitor etw procmon handle-leak

Updated Oct 22, 2025
Rust

0xflux / ETW-Bypass-Rust

Star

Event Tracing for Windows EDR bypass in Rust (usermode)

rust malware hacking pentesting etw malware-research pentest ethical-hacking red-team pentest-tool redteaming redteam edr ethical-hacking-tools redteam-tools edr-bypass edr-evasion etw-evasion etw-bypass

Updated Jun 9, 2024
Rust

TITAN-Softwork-Solutions / Vigil

Star

Blue-Team tool detecting untrusted processes accessing sensitive data using ETW

cybersecurity etw antivirus security-research blue-team blue-team-tool cybersecurity-tools winternals

Updated Jan 30, 2026
Rust

Loonaro / loonaro

Star

Loonaro - Automated Malware Analysis

windows rust sandbox reverse-engineering dfir cybersecurity dynamic-analysis etw dll-injection malware-analysis memory-forensics security-tools process-monitoring blue-team edr threat-detection windows-internals

Updated Dec 22, 2025
Rust

Improve this page

Add a description, image, and links to the etw topic page so that developers can more easily learn about it.

Curate this topic

Add this topic to your repo

To associate your repository with the etw topic, visit your repo's landing page and select "manage topics."

Learn more

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

etw

Here are 7 public repositories matching this topic...

n4r1b / ferrisetw

microsoft / tracelogging

Karib0u / rustinel

wuanzhuan / system_monitor

0xflux / ETW-Bypass-Rust

TITAN-Softwork-Solutions / Vigil

Loonaro / loonaro

Improve this page

Add this topic to your repo