It's not just UsnJrnl (USN Journal Records/Change Journal Records) parser.
☆23Nov 11, 2018Updated 7 years ago
Alternatives and similar repositories for usn_analytics
Users that are interested in usn_analytics are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- It is based on bulk_extractor (https://github.com/simsong/bulk_extractor) and add scanners for record carving☆42Apr 23, 2020Updated 5 years ago
- Registry to JSON. This Project is for learning purposes and is not maintained.☆12Dec 28, 2021Updated 4 years ago
- Windows Thingies in Python for live use.☆24Apr 22, 2019Updated 6 years ago
- DeployREMnux is a Python script that will deploy a cloud instance of the public REMnux distribution in the Amazon cloud (AWS).☆16Dec 20, 2019Updated 6 years ago
- Ghidra Script for automated analysis of EMOTET☆17Feb 3, 2021Updated 5 years ago
- Python script to parse the NTFS USN Journal☆117Jul 15, 2022Updated 3 years ago
- USN to JSON☆22Apr 4, 2020Updated 5 years ago
- Monitor the textual data pasted into Windows clipboard☆29Nov 4, 2018Updated 7 years ago
- volatility explorer☆92Nov 16, 2020Updated 5 years ago
- Highlightfish Plugin will allow you to customize x64dbg colour and Highlighting.☆21Aug 30, 2017Updated 8 years ago
- An AFF4 C++ implementation.☆214Mar 24, 2023Updated 3 years ago
- XPause : Guaranteed to pause the debuggee☆17Oct 2, 2016Updated 9 years ago
- Rekall Forensics and Incident Response Framework with rVMI extensions☆33Mar 25, 2021Updated 4 years ago
- Dumping credentials through windbg and pykd☆41Sep 25, 2023Updated 2 years ago
- Carve NTFS USN records from binary data☆27May 21, 2017Updated 8 years ago
- Parser for $UsnJrnl on NTFS☆122Nov 27, 2022Updated 3 years ago
- 分析ツール結果シート☆19Nov 13, 2017Updated 8 years ago
- A flyout for Microsoft HD-500 Display Dock☆11Oct 2, 2021Updated 4 years ago
- GUI for regripper☆11Mar 19, 2019Updated 7 years ago
- An advanced memory forensics framework☆96Sep 26, 2019Updated 6 years ago
- Customizable script to place on your website that shows whether visitors validate DNSSEC☆14Feb 19, 2019Updated 7 years ago
- Vulnerable Windows Driver with exploits which were used for demonstration purposes on Hunting and exploiting bugs in kernel drivers prese…☆13Jan 29, 2013Updated 13 years ago
- Tools for parsing rulesets using the exact grammar as YARA. Written in Go.☆85Dec 21, 2022Updated 3 years ago
- Volumetric Development☆11Mar 19, 2024Updated 2 years ago
- analyze the content of the pe file on windows, and shell(pack) function for windows drivers.☆11Nov 9, 2018Updated 7 years ago
- WPF helper library☆14Apr 6, 2019Updated 6 years ago
- NDISPktScan is a plugin for the Volatility Framework. It parses the Ethernet packets stored by ndis.sys in Windows kernel space memory.☆12Oct 23, 2015Updated 10 years ago
- A curated list of awesome warez and piracy links☆13May 1, 2019Updated 6 years ago
- Rekall Memory Forensic Framework☆33Aug 5, 2019Updated 6 years ago
- Parsers for .mdf file of Microsoft SQL Server (MSSQL)☆15Mar 28, 2020Updated 5 years ago
- Capstone Engine bindings on PHP 7.0+☆12Sep 22, 2022Updated 3 years ago
- Services and Drivers control application☆19Jul 24, 2017Updated 8 years ago
- [2007] Windows tool, offers the ability to dynamically and transparently modify incoming and outgoing network traffic, as well as to redi…☆12Nov 27, 2017Updated 8 years ago
- A Splunk Technology Add-on to forward filtered ETW events.☆30Oct 14, 2020Updated 5 years ago
- Demonstrate the behavior of the tunnel cache on Windows☆11Aug 13, 2019Updated 6 years ago
- ☆14May 9, 2017Updated 8 years ago
- gamedll☆10May 11, 2017Updated 8 years ago
- Indicators of compromise relating to our report on APT10's targeting of global MSPs☆10Sep 26, 2017Updated 8 years ago
- Browser History Histogram -- module for the Autopsy Forensic Browser☆11Sep 15, 2019Updated 6 years ago