PipeViewer
ETWProcessMon2
PipeViewer | ETWProcessMon2 | |
---|---|---|
7 | 1 | |
530 | 282 | |
1.1% | - | |
7.3 | 9.0 | |
9 months ago | about 2 months ago | |
C# | C# | |
Apache License 2.0 | - |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
PipeViewer
- 🔥 PipeViewer: A new tool for viewing Windows Named Pipes and searching for insecure permissions. 🔥
-
Discovering Six Critical Docker Desktop Privilege Escalation Vulnerabilities. (Bonus: New OSS Tool!)
Eviatar also put his new tool PipeViewer up on github as well. https://github.com/cyberark/PipeViewer
ETWProcessMon2
What are some alternatives?
ImpulsiveDLLHijack - C# based tool which automates the process of discovering and exploiting DLL Hijacks in target binaries. The Hijacked paths discovered can later be weaponized during Red Team Operations to evade EDR's.
YoloDetectionHoloLens-Unity - Object detection on the HoloLens through streaming PV camera frames to a companion PC, processing those using a YOLO framework, and returning the bounding box data which is rendered using Unity.
defcon27_csharp_workshop - Writing custom backdoor payloads with C# - Defcon 27 Workshop
Winshark - A wireshark plugin to instrument ETW
KRBUACBypass - UAC Bypass By Abusing Kerberos Tickets
frostbyte - FrostByte is a POC project that combines different defense evasion techniques to build better redteam payloads
DPAPISnoop - A C# tool to output crackable DPAPI hashes from user MasterKeys