fibratus

Tool for exploration and tracing of the Windows kernel

These details have not been verified by PyPI

Project links

Homepage

Project description

Fibratus is a tool which is able to capture the most of the Windows kernel activity - process/thread creation and termination, file system I/O, registry, network activity, DLL loading/unloading and much more. Fibratus has a very simple CLI which encapsulates the machinery to start the kernel event stream collector, set kernel event filters or run the lightweight Python modules called filaments. You can use filaments to extend Fibratus with your own arsenal of tools.

Project details

These details have not been verified by PyPI

Project links

Homepage

Release history Release notifications | RSS feed

This version

0.7.2

Jul 22, 2017

0.7.1

Apr 17, 2017

0.7.0

Mar 24, 2017

0.6.1

Mar 4, 2017

0.6.0

Jan 22, 2017

0.4.1

Nov 5, 2016

0.4.0

Nov 1, 2016

0.3.0

Oct 1, 2016

0.2.3

Aug 20, 2016

0.2.2

Aug 20, 2016

Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

fibratus-0.7.2.tar.gz (213.6 kB view details)

Uploaded Jul 22, 2017 Source

File details

Details for the file fibratus-0.7.2.tar.gz.

File metadata

Download URL: fibratus-0.7.2.tar.gz
Upload date: Jul 22, 2017
Size: 213.6 kB
Tags: Source
Uploaded using Trusted Publishing? No

File hashes

Hashes for fibratus-0.7.2.tar.gz
Algorithm	Hash digest
SHA256	`7c6ceab4bf90b4cc509b03cad69ad60865fb79183579c1feb4658169902e754c`
MD5	`e2cc29b8f101b4cf4b40778b5970a7b3`
BLAKE2b-256	`dad9b8a8090636c3fd7e29e73dc7427bad70739aca3891a6c4d0d1fdb28df772`