sysinternals
There are 48 repositories under sysinternals topic.
SwiftOnSecurity/sysmon-config
Sysmon configuration file template with default high-quality event tracing
microsoft/ProcDump-for-Linux
A Linux version of the ProcDump Sysinternals tool
nshalabi/SysmonTools
Utilities for Sysmon
ion-storm/sysmon-config
Advanced Sysmon ATT&CK configuration focusing on Detecting the Most Techniques per Data source in MITRE ATT&CK, Provide Visibility into Forensic Artifact Events for UEBA, Detect Exploitation events with wide CVE Coverage, and Risk Scoring of CVE, UEBA, Forensic, and MITRE ATT&CK Events.
diogo-fernan/ir-rescue
A Windows Batch script and a Unix Bash script to comprehensively collect host forensic data during incident response.
Tulpep/SDelete-Gui
Secure delete files with right click. GUI for Sysinternals SDelete tool
arizvisa/windows-binary-tools
Various tools besides Msys2 that I've found useful to have available on windows. Create an issue if you have anything you want to add, want some binaries updated, or you think that some of them should be moved or re-moved.
AlexanderPro/AwesomeWallpaper
AwesomeWallpaper plays videos, shows images and system info on your desktop wallpaper
memoryforensics1/Vol3xp
Volatility Explorer Suit
alal4465/KernelMon
A ProcMon-esque tool for monitoring Windows Kernel Drivers
cristeigabriela/re-sysinternals-suite
Code from process of reversing Sysinternals Suite for educational purposes, with videos to associate them
niheaven/scoop-sysinternals
Scoop bucket for Sysinternals
burlachenkok/exploring-python3
Exploring Python3 Language from a Computing Perspective
matheus-1618/Atreus
Anti-Ransomware to mitigate and neutralize Ryuk Threat.
SecurityJosh/MuteSysmon
A PowerShell script to prevent Sysmon from writing its events
lowleveldesign/send2procmon
A command line tool that sends its input data to a running procmon instance.
belowaverage-org/SuperBGInfo
A re-creation of SysInternals BGInfo that doesn't touch the desktop wallpaper.
AlSch092/APC-PE-Injector
APC Injection is a code injection technique which bypasses TLS callback protections (Windows OS)
blazcode/BgAssist
Small footprint executable triggering desktop background refreshes, helping to improve user experience and accessibility in VDI environments.
abhishekgoenka/tools-and-utilities
This repository contains tools and utilities used for developer
benwa/BgInfo-Helper
Quality of life improvements for Sysinternal's BgInfo
Nick-C/Sysmon-Installer
A Sysmon Install script using the Powershell Application Deployment Toolkit
sous-chefs/sysinternals
Development repository for the sysinternals cookbook
1Dimitri/WixsharpSysmon
Wixsharp based installed MSI for Sysmon and rules from the SwiftOnSecurity project
asheroto/Registry-Jumper
Chrome/Edge/Brave extension to open any selected Windows Registry path in Regedit using Sysinternals RegJump
debilsyka/ProcMonDebugOutput
See Your Trace Statements in Process Monitor!
devxathena/WinOptimizer
A robust Python utility designed for downloading and extracting optimization tools and scripts from GitHub repositories and Sysinternals, streamlining the Windows optimization process.
Pnwcomputers/SystemTester
A no-install, thumb-drive friendly, PowerShell toolkit that runs a curated set of Sysinternals and Windows checks and produces a detailed log/summary file.
Starli0n/Seraph
Frontend for Handle viewer of Windows Sysinternals
chalvorson/sysmon-config
Sysmon configuration file template from SwiftOnSecurity with a few PRs merged and install/updates scripts from threathunting.
cj13579/open-whois
A python whois client that is intended to be a drop-in upgrade to the Windows sysinternals whois client with support for significantly more WHOIS formats and domains.
githubfoam/choco_githubactions
chocolatey baseline packages
mark-kubacki/go.runtime
Gets you the available thread count, without caching; handy for systems and hot-plugging cpus; merged into Docker.
Mohamed-SayedAlAhl/DeleteIt
Delete It is an innovative Windows Forms application designed to address one of the most frustrating issues in file management: the inability to delete stubborn files and folders that are locked or in use by the system. This application empowers users with a suite of powerful tools to manage file access and enhance their file deletion experience.
vurdalakov/regjumpsharp
A C# remake of RegJump by SysInternals
zake1god/sysmon-config-with-cmd
Custom Sysmon configuration, add read CMD And Powershell by Zake