EricZimmerman/RegistryPlugins EricZimmerman/RegistryPlugins

  • Stars
    star
    59
  • Rank 509,601 (Top 11 %)
  • Language
    C#
  • License
    MIT License
  • Created almost 8 years ago
  • Updated 4 months ago
Twitter logo Share LinkedIn logo Share Facebook logo Share
EricZimmerman/RegistryPlugins
github

EricZimmerman

Reviews

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

Repository Details

More Repositories

1

KapeFiles

This repository serves as a place for community created Targets and Modules for use with KAPE.
646
star
2

evtx

C# based evtx parser with lots of extras
C#
276
star
3

LECmd

Lnk Explorer Command line edition!!
C#
274
star
4

Registry

Full featured, offline Registry parser in C#
C#
219
star
5

VoronTools

Various scripts and tools
Shell
217
star
6

PECmd

Prefetch Explorer Command Line
C#
214
star
7

MFTECmd

Parses $MFT from NTFS file systems
C#
191
star
8

Get-ZimmermanTools

Get all my software
PowerShell
137
star
9

RECmd

Command line access to the Registry
Rebol
126
star
10

bstrings

A better strings utility!
C#
120
star
11

AmcacheParser

Parses amcache.hve files, but with a twist!
C#
117
star
12

AppCompatCacheParser

AppCompatCache (shimcache) parser. Supports Windows 7 (x86 and x64), Windows 8.x, and Windows 10
C#
109
star
13

JumpList

C#
105
star
14

Prefetch

Windows Prefetch parser. Supports all known versions from Windows XP to Windows 10.
C#
103
star
15

ericzimmerman.github.io

Software downloads
HTML
89
star
16

Lnk

Lnk file parser
C#
78
star
17

JLECmd

Automatic and Custom Destinations jump list parser with Windows 10 support
C#
74
star
18

MFT

MFT parser
C#
59
star
19

SQLECmd

C#
44
star
20

KapeDocs

Documentation repository
HTML
42
star
21

Voron24

Voron 2.4 350 configuration files. LDOkit
Shell
42
star
22

RegistryExplorerBookmarks

Registry Explorer bookmark definitions
41
star
23

Srum

C#
35
star
24

RBCmd

Recycle bin artifact parser
C#
34
star
25

SDB

Parse Microsoft shim databases
C#
28
star
26

RecentFileCacheParser

Parses RecentFileCacheParser.bcf files
C#
24
star
27

ExtensionBlocks

Extension blocks as found in ShellBags and other places in the Registry
C#
23
star
28

TLEFilePlugins

Plugins for parsing CSV files in Timeline Explorer. This project allows for anyone to add more supported files (i,e. they get a Line #/tag column, layout support, searching, etc.)
C#
22
star
29

USBDevices

Get USB Devices from Registry hives
C#
21
star
30

WxTCmd

C#
19
star
31

Sum

C#
19
star
32

OleCf

Library to process OLE compound file format. This is a work in progress and was initially written for jumplist parsing (for which it does fine)
C#
18
star
33

iisGeolocate

geolocate ip addresses in IIS logs
C#
18
star
34

EricZimmerman

16
star
35

GuidMapping

C#
15
star
36

VSCMount

Mount VSCs with ease!
C#
14
star
37

Voron02

Voron 0.2 configs (v0s1 --> 0.2)
Shell
14
star
38

VoronConfigs

Klipper configuration for an LDO Voron V2.4 350mm with Euclid probe
14
star
39

Issues

This is a repository for reporting any issues in any of my software
11
star
40

timeapp

Simple time and public IP app, useful for recording the screen while interacting with a computer for later corroboration of artifacts against time
C#
10
star
41

MVT

C#
9
star
42

filemgr

File manager with dedupe on import, export existing, export delta, hash list generation, etc.
Python
6
star
43

EmailCounter

C#
3
star
44

K3

Shell
1
star