504ensicsLabs / registrydecoder

Related projects ⓘ

Alternatives and complementary repositories for registrydecoder

• dnlongen / RegLister
  Recurse through a registry, identifying values with large data -- a registry malware hunter
  ☆44Updated 8 years ago
• Rurik / PE_Carver
  Carves EXEs from given data files, using intelligent carving based upon PE headers
  ☆36Updated 7 years ago
• mantarayforensics / mantaray
  MantaRay Automated Computer Forensic Triage Tool
  ☆63Updated 5 years ago
• hiddenillusion / IR
  Some dfir stuff
  ☆31Updated 2 years ago
• vortessence / vortessence
  Automated memory forensics analysis
  ☆32Updated 5 years ago
• jipegit / IRNotes
  Some IR notes
  ☆73Updated 8 years ago
• idiom / pftriage
  Python tool and library to help analyze files during malware triage and analysis.
  ☆77Updated 4 years ago
• woanware / TargetAnalyser
  Tool for analysts to perform simultaneous lookups (IP, Domain, URL, MD5) against multiple data sources
  ☆29Updated 7 years ago
• botherder / vxcage
  REST API based malware repository (abandoned)
  ☆108Updated 9 years ago
• wmetcalf / buildcuckoo-trusty
  A dumb set of scripts for building a cuckoo rig
  ☆61Updated 7 years ago
• yampelo / samparser
  A python script used to parse the SAM registry hive.
  ☆72Updated 6 years ago
• fireeye / tools
  general purpose and malware specific analysis tools
  ☆99Updated 9 years ago
• scudette / memory-analysis
  A Rekall interactive document for a Memory Analysis workshop/course.
  ☆43Updated 7 years ago
• mandiant / AuditParser
  AuditParser
  ☆58Updated 11 years ago
• jeffbryner / pyioc
  Python tools for IOC (Indicator of Compromise) handling
  ☆96Updated 2 years ago
• TakahiroHaruyama / openioc_scan
  openioc_scan Volatility Framework plugin
  ☆42Updated 8 years ago
• mbrown1413 / SqliteFind
  A Volatility plugin for finding sqlite database rows
  ☆22Updated 5 years ago
• sketchymoose / TotalRecall
  Based on the Volatility framework, this script will run various plugins as well as create a timeline, or use YARA/ClamAV/VirusTotal to fi…
  ☆49Updated 7 years ago
• strozfriedberg / ntfs-linker
  An NTFS journal parser
  ☆82Updated 8 years ago
• codexgigassys / codex-frontend
  Frontend for Codex Gigas
  ☆21Updated 7 years ago
• Cisco-Talos / locky
  ☆68Updated 7 years ago
• jaimeblasco / AlienvaultLabs
  Alienvault Labs Projects Random Stuff
  ☆78Updated 11 years ago
• Neo23x0 / ImpHash-Generator
  PE Import Hash Generator
  ☆74Updated 7 years ago
• mandiant / Volatility-Plugins
  ☆82Updated 8 years ago
• jjo-sec / volatility_plugins
  Volatility Plugins
  ☆21Updated 9 years ago
• YahooArchive / PyIOCe
  Python IOC Editor
  ☆61Updated 9 years ago
• abdesslem / malwareHunter
  Static and automated/dynamic malware analysis
  ☆46Updated 9 years ago