Jump to content
Nytro

Ghost In The Logs

By Nytro, in Programe hacking

Recommended Posts

Nytro Mentor

Nytro

Posted
Posted

Ghost In The Logs

This tool allows you to evade sysmon and windows event logging, my blog post about it can be found here

Usage

You can grab the lastest release here

Starting off

Once you've got the latest version execute it with no arguments to see the avalible commands 

$ gitl.exe

alt text

Loading the hook 

$ gitl.exe load

alt text

Enabling the hook (disabling all logging) 

$ gitl.exe enable

alt text

Disabling the hook (enabling all logging) 

$ gitl.exe disable

alt text

Get status of the hook 

$ gitl.exe status

alt text

Prerequisites

  • High integrity administrator privilages

Credits

Huge thanks to:

 

Sursa: https://github.com/bats3c/ghost-in-the-logs/

Link to comment
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

×
Go to topic listing
×
×
  • Create New...