DamonMohammadbagher/ETWNetMonv3
ETWNetMonv3 is simple C# code for Monitoring TCP Network Connection via ETW & ETWProcessMon/2 is for Monitoring Process/Thread/Memory/Imageloads/TCPIP via ETW + Detection for Remote-Thread-Injection & Payload Detection by VirtualMemAlloc Events (in-memory) etc.
C#
Stargazers
- a7t0fwa7
- aboutboNetease
- Ak74-577
- Asey1k
- beerandgin
- binarytrails
- BrettBaggott
- Bvaudin
- ciyze0101WuHan
- cowbe0x004
- d0gkiller87de_dust2
- DATA-GaMiBeijing
- dearfuture
- dfirnewbie
- FDluciferBurning in the deepest hell...
- frankfanslcFatpipe Networks
- Iridocyclitis562M3TH
- jaychouzzk
- jonz-secopsMountain State, USA
- js0ncheng
- jymcheongSingapore
- killvxkUSSR
- kweathermanUSA
- ovhx
- QQ2017
- RapTapAppRapTapApp
- rbwdennyRBW
- rmusser01Someplace
- rocker9527
- rocoss
- RonnieSalomonsen@Mandiant
- sgfshanghai.cn
- vishnummvBangalore
- wuyadie
- xss517
- Yang-zhiyuan