504ensicsLabs / registrydecoderLinks
This is a copy of the Registry Decoder repository from Google Code.
☆28Updated 9 years ago
Alternatives and similar repositories for registrydecoder
Users that are interested in registrydecoder are comparing it to the libraries listed below
Sorting:
- Recurse through a registry, identifying values with large data -- a registry malware hunter☆44Updated 8 years ago
- Automated memory forensics analysis☆33Updated 5 years ago
- Carves EXEs from given data files, using intelligent carving based upon PE headers☆39Updated 8 years ago
- ☆16Updated 10 years ago
- Some dfir stuff☆31Updated 3 years ago
- ☆68Updated 8 years ago
- openioc_scan Volatility Framework plugin☆43Updated 9 years ago
- An NTFS journal parser☆82Updated 9 years ago
- A Volatility plugin for finding sqlite database rows☆22Updated 5 years ago
- Cryptowall Tooling & Information☆35Updated 9 years ago
- Useful scripts, rules etc. for use with YARA☆27Updated 4 years ago
- Various scrips☆12Updated 2 years ago
- A Rekall interactive document for a Memory Analysis workshop/course.☆43Updated 8 years ago
- Yara rules☆48Updated 11 years ago
- MantaRay Automated Computer Forensic Triage Tool☆64Updated 6 years ago
- Static and automated/dynamic malware analysis☆47Updated 9 years ago
- Alienvault Labs Projects Random Stuff☆79Updated 11 years ago
- Volatility Plugins☆21Updated 10 years ago
- Frontend for Codex Gigas☆21Updated 8 years ago
- ☆36Updated 8 years ago
- Some IR notes☆73Updated 8 years ago
- Ponmocup Indicators of Compromise☆11Updated 9 years ago
- Python tools for IOC (Indicator of Compromise) handling☆96Updated 3 years ago
- A dumb set of scripts for building a cuckoo rig☆61Updated 8 years ago
- Multiple rules for yara-project for detect compiler/packer/protector☆33Updated 5 years ago
- Various DFIR Tools☆26Updated 6 years ago
- Scripts for dealing with various ek's☆69Updated 8 years ago
- Malware Control Monitor☆87Updated 10 years ago
- PE Import Hash Generator☆80Updated 7 years ago
- Yara is awesome, but sometimes you need to manipulate the data streams you're scanning in different ways.☆97Updated 10 years ago