This project contains C++ code that is also used in some of my other ETW repositories like ETW Event Data Analyzer.
I developed this library during my research into the inner workings of Event Tracing for Windows (ETW), Virtual Machine Introspection (VMI), and how to monitor ETW events using VMI.
See:
- HypErSIS Project
- Schmitz, A. Decoding, enrichment and filtering of ETW event data outside of Windows environments. 2023. PDF download.
- Schmitz, A. Event‑based system monitoring of Windows PCs. 2022. PDF downlaod.
- Schmitz, A. Hardware-assisted Virtualization for Malware Analysis and Intrusion Detection. 2021. PDF download.