SkillAgentSearch skills...

WinIPTCollector

Intel Processor Trace package collector for Windows

GenerateConvertImprove

Install / Use

/learn @BlackLuny/WinIPTCollector
About this skill

Quality Score

0/100

Supported Platforms

Universal

README

WinIPTCollector

WinIPTCollector is a tool for collecting INTEL Processor Trace (IPT) package for any specific process and for specific virtual address ranges(ADDR_N) on Windows platform without Performace Monitor Interrupt(PMI). Such features are:

  1. Support CR3 filter, ADDR_N filter without PMI(that is no #BSOD#);
  2. Realtime data collecting and saving as files without package data losing;
  3. configurable(config.ini);

Please reference Intel manual for more about Intel Processor trace technology.

Want to try?

Step 1:

Download Release

Step 2:

Install and start the driver "WinIPTCollector.sys";

Step 3:

   APPExample.exe [Process name] [output path director]

such as:

   APPExample.exe notepad.exe d:\

Step 4:

Waiting until you pressing 'Ctrl+C' to cancle collecting.

Thanks

cheat-engine ini-parser BlackBone

BlackLuny

View profile

View on GitHub
GitHub Stars18
CategoryDevelopment
Updated1y ago
Forks9
BlackLuny/WinIPTCollector

Languages

C++

Security Score

65/100

Audited on Mar 14, 2025

No findings