PyWindowsThingies
PyWindowsThingies copied to clipboard

forensicmatt

→

Metadata

Windows Thingies in Python for live use.

Readme
Issues

trafficstars

Cool win-thingies

My repository for doing dfir windows things in real time.

Scripts

scripts/etw_mon.py

See etw_mon docs

scripts/userassist_monitor.py

See userassist_monitor docs

scripts/print_handles.py

See print_handles docs

scripts/print_publishers.py

See print_publishers docs

Thanks

Thanks to other people's work that were great win32 ctype references.

https://github.com/rabbitstack/fibratus
https://github.com/fireeye/pywintrace
https://github.com/hakril/PythonForWindows
https://github.com/NadavRazDev/dotfiles

About

Windows Thingies in Python for live use.

23

Stars

2

Forks

Watchers

Owner

forensicmatt

← Metadata

23

Stars

2

Forks

Watchers

Owner

forensicmatt

Metadata

Windows Thingies in Python for live use.

Back

PyWindowsThingies PyWindowsThingies copied to clipboard

Metadata

Cool win-thingies

Scripts

scripts/etw_mon.py

scripts/userassist_monitor.py

scripts/print_handles.py

scripts/print_publishers.py

Thanks

← Metadata

Owner

Metadata

PyWindowsThingies
PyWindowsThingies copied to clipboard