Alternatives and similar repositories for fortools

Users that are interested in fortools are comparing it to the libraries listed below

• sumeshi / ntfsdump
  An efficient tool for extracting files, directories, and alternate data streams directly from NTFS image files.
  ☆21Updated last year
• libyal / winevt-kb
  Windows Event Log Knowledge Base
  ☆24Updated 7 months ago
• ssp4rk / threatintel
  ☆11Updated 4 years ago
• EricZimmerman / WxTCmd
  ☆19Updated last week
• Abyss-W4tcher / volatility-scripts
  This repository contains a variety of plugins and scripts, related to the Volatility framework.
  ☆12Updated 3 months ago
• immortalp0ny / yarg
  Yet another rule generator for Yara
  ☆28Updated 4 years ago
• sumeshi / ntfsfind
  An efficient tool for search files, directories, and alternate data streams directly from NTFS image files.
  ☆26Updated last year
• Dafti / pyrefs
  Refs file system dumps analyzer.
  ☆12Updated 6 years ago
• mandiant / win10_rekall
  Rekall Memory Forensic Framework
  ☆32Updated 5 years ago
• digitalisx / Security
  Digitalis's Security Lab
  ☆10Updated 3 years ago
• sweetchipsw / vulnerability
  *For research purposes only*. Some proof of concept code to trig vulnerability or exploit them that I found before.
  ☆24Updated 6 years ago
• mcarmanize / esfriend
  A minimal malware analysis sandbox for macOS
  ☆29Updated 2 years ago
• lemmou / RansomNoteFiles
  ☆23Updated last year
• NTFSparse / ntfs_parse
  NTFS parser, plus linking capabilites between MFT LogFile and UsnJrnl
  ☆37Updated 8 years ago
• analyzeDFIR / analyzePF
  Tool for analysis of Windows Prefetch files
  ☆26Updated 6 years ago
• volexity / hwp-extract
  A library and cli tool to extract HWP files.
  ☆22Updated 3 months ago
• ald3ns / XPR-dump
  Helper scripts to automate the extraction of YARA rules from XProtectRemediators
  ☆20Updated last year
• cube0x8 / ChromeRagamuffin
  Google Chrome internals analysis using Volatility
  ☆42Updated 2 years ago
• memoryforensics1 / VolExp
  volatility explorer
  ☆91Updated 4 years ago
• g-les / floss2yar
  ☆15Updated 2 years ago
• 4n6ist / mssql_4n6
  Parsers for .mdf file of Microsoft SQL Server (MSSQL)
  ☆15Updated 5 years ago
• libyal / libfwevt
  Library for Windows XML Event Log (EVTX) data types
  ☆18Updated 7 months ago
• mnrkbys / norimaci
  Norimaci is a simple and lightweight malware analysis sandbox for macOS
  ☆69Updated 5 years ago
• ydkhatri / macOS_FE
  Tools for macOS Forensic Bootable media
  ☆15Updated 4 years ago
• kohnakagawa / cidre-vm
  Software installation scripts for macOS systems that allows you to setup a Virtual Machine (VM) for reverse engineering macOS malware
  ☆30Updated 3 months ago
• alexander-hanel / hansel
  Hansel - a simple but flexible search for IDA
  ☆26Updated 5 years ago
• kimbabasaksaksak / KDFC-2023-WriteUp
  KIISC Digital Forensics Challenge 2023 - Kimbabasaksaksak's WriteUp
  ☆23Updated last year
• bnbdr / swisscheese
  Exploits for YARA 3.7.1 & 3.8.1
  ☆31Updated 6 years ago
• GDATAAdvancedAnalytics / bindifflib
  Automated library compilation and PDB annotation with CMake and IDA Pro
  ☆21Updated 6 years ago
• williballenthin / wevt_template
  extract and parse WEVT_TEMPLATEs from PE files
  ☆18Updated last year