Tools for Research and Detection

ETW Monitoring: Logman, xperf, ETWExplorer, SilkETW
Syscall Analysis: Sysmon, Procmon, strace, Syscall2name
Callback Detection: Windbg, PE-sieve, EDRSandblast, KProcessHacker

PreviousSyscall Monitoring NextHooking

Last updated 4 months ago