Add: DamonMohammadbagher/ETWProcessMon2 to DFIR section

2024-06-28 06:32:11 +00:00 · 2021-07-09 06:57:06 +07:00 · 2021-07-09 06:57:06 +07:00 · f60971d063
commit f60971d063
parent 03b91467fe
1 changed files with 4 additions and 0 deletions
--- a/README.md
+++ b/README.md
@ -1200,6 +1200,10 @@ This repository is created as an online bookmark for useful links, resources and
        <td><a href="https://github.com/CyberDefenseInstitute/CDIR">CyberDefenseInstitute/CDIR</a></td>
        <td>CDIR (Cyber Defense Institute Incident Response) Collector - live collection tool based on oss tool/library</td>
    </tr>
+    <tr>
+        <td><a href="https://github.com/DamonMohammadbagher/ETWProcessMon2">DamonMohammadbagher/ETWProcessMon2</a></td>
+        <td>ETWProcessMon2 is for Monitoring Process/Thread/Memory/Imageloads/TCPIP via ETW + Detection for Remote-Thread-Injection etc.</td>
+    </tr>
    <tr>
        <td><a href="https://github.com/davehull/Kansa">davehull/Kansa</a></td>
        <td>A Powershell incident response framework</td>