There are no reviews yet. Be the first to send feedback to the community and the maintainers!
PancakeViewer
A DFVFS Backed Forensic ViewerRsWindowsThingies
Windows Thingies... but in RustRustyUsn
USN to JSONRustyLnk
LNK to JSONRustyReg
Registry to JSON. This Project is for learning purposes and is not maintained.libtsk-rs
Wrapper for TSK (Sleuth Kit) BindingsRustyPrefetch
Prefetch to JSON. This Project is for learning purposes and is not maintained.RustyMft
MFT to JSONpyshellitems
Python library and tools for handling shell items / property lists and stores / and extension blocks. This project is for learning purposes and is not maintained.VanillaWindowsTools
Tools for parsing and playing with https://github.com/AndrewRathbun/VanillaWindowsReference datar-winreg
Windows Registry Parsing LibraryActivitiesCacheParser
Parse Windows ActivitiesCache to JSONL. This project is for learning purposes and is not maintained.JsonlTools
Tools for filtering and manipulating JSONLaws-snap-io
Library for implementing Read Seek ontop of an AWS SnapshotMonitorUserAssist
Tool that can monitor the UserAssist registry keys and decode UserAssist structs in real-time. This project is for learning purposes and is not maintained.LogicalRegTool
A registry tool that can be ran on a logical volume. JSONL output for NoSQL. This project is for learning purposes and is not maintained.WinObjectIdParser
ObjectID Parsers and Tools. This project is for learning purposes and is not maintained.sans509-helpers
Just a quick script to parse load balancer logs into jsonPyRustyUsn
Python bindings for RustyUsnsnapio-evtx-extractor
Tool that uses aws-snap-io and libtsk to extract EVTX files from an AWS snapshot.LogicalAvacado
A DFIR Tool for processing logical volumes and inserting records into ArangoDB. This project is for learning purposes and is not maintained.upcaseinfo-py
$UpCase:$Info parsing tool/lib in Pythonr-winstructs
Windows Structures in Rust. This Project is for learning purposes and is not maintained.upcaseinfo-rs
$UpCase:$Info parsing tool/lib in RustLogicalJmpLnkTool
A jumplist and link tool that can be ran on a logical volume. JSONL output for NoSQL. This project is for learning purposes and is not maintained.r-pyfio
A way to pass a file-like IO object in python to RustSetupApiLogParser
Parse Setup API Logs to JSONLr-shellitems
Shell Item Structures in RustLove Open Source and this site? Check out how you can help us