Frontend for Handle viewer of Windows Sysinternals

A python whois client that is intended to be a drop-in upgrade to the Windows sysinternals whois client with support for significantly more WHOIS formats and domains.

A command line tool that sends its input data to a running procmon instance.

A Sysmon Install script using the Powershell Application Deployment Toolkit

This repository contains tools and utilities used for developer

A re-creation of SysInternals BGInfo that doesn't touch the desktop wallpaper.

Gets you the available thread count, without caching; handy for systems and hot-plugging cpus; merged into Docker.

A PowerShell script to prevent Sysmon from writing its events

Batch Script that takes file objects and identifies file magic items and copies to current working directory. The script also uploads everything to VirusTotal.

A Windows Batch script and a Unix Bash script to comprehensively collect host forensic data during incident response.

Secure delete files with right click. GUI for Sysinternals SDelete tool

Wixsharp based installed MSI for Sysmon and rules from the SwiftOnSecurity project

Wix# + SysInternals

A ProcMon-esque tool for monitoring Windows Kernel Drivers

Quality of life improvements for Sysinternal's BgInfo

특정 프로세스의 런타임 파일 API 호출 로그를 분석하여 파일 API 사용 상의 오류를 자동으로 탐지합니다.

Volatility Explorer Suit

Sysinternals Now is an utility to fetch Sysinternals utilities.

Sysmon configuration file template from SwiftOnSecurity with a few PRs merged and install/updates scripts from threathunting.

Small footprint executable triggering desktop background refreshes, helping to improve user experience and accessibility in VDI environments.