Skip to content
/ netwatch Public

A focused TCP/UDP endpoint enumerator for Windows exploit development.

License

MIT license
5 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

0xntpower/netwatch

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

7 Commits
docs
docs
 
 
netwatch
netwatch
 
 
.gitignore
.gitignore
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
netwatch.sln
netwatch.sln
 
 

Repository files navigation

Windows C++20 MSVC License Status

NetWatch

A focused TCP/UDP endpoint enumerator for Windows exploit development.

NetWatch is a single-binary Windows tool that lists listening and established TCP/UDP connections alongside security-relevant process metadata.

Built as a lightweight alternative to TCPView for the enumeration phase of vulnerability research. Instead of network traffic metrics, NetWatch surfaces what actually matters when identifying targets: process architecture, integrity level, DEP/ASLR/CFG status, SafeSEH and executable paths — everything you need before loading a binary into IDA.

Quick Start

netwatch.exe                 # all endpoints
netwatch.exe -l              # listening only (attack surface)
netwatch.exe -l --x86        # 32-bit listening services
netwatch.exe --filter Sync   # hunt for specific software

Disclaimer

This code is currently in beta. Some areas may lack polish or optimal design patterns, as development has been fast-paced to reach an initial working version alongside my EXP-301 studies. Expect some refactoring and architectural improvements in upcoming releases.

WTL GUI

netwatch_sc

About

A focused TCP/UDP endpoint enumerator for Windows exploit development.

Resources

Readme

License

MIT license
Activity

Stars

5 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

1 tags

Packages

No packages published

Languages