There are no reviews yet. Be the first to send feedback to the community and the maintainers!
rexgen
API Documentationntdsextract2
This aims to be a collection of tools to forensically analyze Active Directory databasesevtxview
evtxview is a GUI viewer for Microsoft Windows evtx files (Windows event logs). I'm hacking this tiny tool because I need such a tool in most forensic investigations.dionysos
Scanner for certain IoCsevtxgrep
filtering Windows Event Log filesmft2bodyfile
parses an $MFT file to bodyfilent-hive2
Windows registry parser library build upon BinReadforensic-scripts
Collection of useful forensic scriptsipgrep
search for IP addresses in text filespython-evtxtools
Collection of command line tools to correlate windows event logs. This set of tools is aimed to be used at forensic investigations.lnk2bodyfile
Parse Windows LNK files and create bodyfile outputevtx2bodyfile
Parses a lot of evtx files and prints a bodyfileevtxtools
⛔️ DEPRECATED: Use https://github.com/dfir-dd/dfir-toolkit insteades4forensics
⛔️ DEPRECATED: Use https://github.com/dfir-dd/dfir-toolkit insteaddfir-esedb
A library to allow forensic analysis of EseDB filesusnjrnl
Parses Windows $UsnJrnl fileslibpefile
library to parse PE filesmactime2
⛔️ DEPRECATED: Use https://github.com/dfir-dd/dfir-toolkit insteadregls
List contents of Windows Registry filesjanstarke.github.io
xml2json
CLI tool to convert XML into JSONloghawk
A cli tool to display large CSV filespbc4rust
PBC (Pairing based cryptography) implementation using RustLove Open Source and this site? Check out how you can help us