Alternatives and similar repositories for EventLog-Analyzer:

Users that are interested in EventLog-Analyzer are comparing it to the libraries listed below

• EricZimmerman / OleCf
  Library to process OLE compound file format. This is a work in progress and was initially written for jumplist parsing (for which it does…
  ☆18Updated 2 months ago
• kacos2000 / OtherStuff
  Various Topics
  ☆15Updated 2 years ago
• harris21 / afot
  Automation Forensics Tool for Windows
  ☆44Updated 7 years ago
• piesecurity / WindowsEventsToCSVTimeline
  Simple Powershell scripts to collect all Windows Event Logs from a host and parse them into one CSV timeline.
  ☆33Updated 6 years ago
• EricZimmerman / RegistryExplorerBookmarks
  Registry Explorer bookmark definitions
  ☆41Updated 3 months ago
• EricZimmerman / USBDevices
  Get USB Devices from Registry hives
  ☆21Updated 3 years ago
• kacos2000 / Win10LiveInfo
  Windows 10 Live Information viewer
  ☆36Updated 3 years ago
• nesfit / NetfoxDetective
  Network Forensic Extendable Analysis Tool
  ☆39Updated 2 years ago
• ceramicskate0 / SWELF
  Simple Windows Event Log Forwarder (SWELF). Its easy to use/simply works Log Forwarder and EVTX Parser. Almost in full release here at ht…
  ☆24Updated last year
• nasbench / procmon-malware-analysis-filters
  Repository containing malware analysis filters for the Windows SysInternals' - Process Monitor tool
  ☆15Updated 4 years ago
• Kriegel / ComPower
  ComPower is a Windows PowerShell module to work with the Component Object Model (COM).
  ☆28Updated 10 years ago
• woanware / wmi-parser
  Parses the WMI object database....looking for persistence
  ☆31Updated 5 years ago
• filescanio / fsCommunity
  Collection of scripts / samples / snippits around the community service at www.filescan.io
  ☆11Updated 2 months ago
• michalzobec / PS-STIG-Scanner
  PowerShell based STIG Scanner.
  ☆11Updated 2 years ago
• kacos2000 / Jumplist-Browser
  Automatic/Custom Destinations & LNK (MS-SHLLINK) Browser
  ☆32Updated last year
• nettitude / logparser
  SQL scripts for querying event logs
  ☆21Updated 7 years ago
• EricZimmerman / GuidMapping
  ☆17Updated 2 months ago
• labcif / YPA
  Autopsy plugin to extract information from the 'Your Phone' Windows 10 App
  ☆13Updated 4 years ago
• InfosecMatter / Shells-for-restricted-environments
  A repository of compiled and ready-to-use shells for Windows restricted environments.
  ☆36Updated 5 years ago
• jp-slackspace / x-tension-c-sharp
  An updated C# port of X-Ways X-Tensions API.
  ☆12Updated 7 years ago
• danielbohannon / DevSec-Defense
  Accompanying PowerShell Modules for DevSec Defense Presentation
  ☆28Updated 6 years ago
• bitsadmin / winconfig
  Windows productivity tweaks
  ☆15Updated 5 years ago
• MITRECND / d20
  Automated Static Analysis Framework
  ☆9Updated 3 years ago
• AlmCo / Panorama
  Fast incident overview
  ☆39Updated 8 years ago
• Invoke-IR / POSHNBD
  PowerShell Module to provide Network Block Device like functionality on Windows Hosts
  ☆13Updated 9 years ago
• forensenellanebbia / powershell-scripts
  Powershell scripts
  ☆12Updated 2 years ago
• williballenthin / Autopsy-WindowsRegistryContentViewer
  no longer maintained
  ☆16Updated 7 years ago
• woanware / autorunner
  Emulates the Sysinternals Autoruns tool, but for DFIR purposes e.g. multi user processing
  ☆55Updated 5 years ago
• e-sterling / Nmap-Scan.PS1
  PowerShell wrapper for nmap, allows easy scanning of many hosts and subnets
  ☆17Updated 7 years ago
• Invoke-IR / WmiEvent
  A PowerShell module to abstract the complexities of Permanent WMI Event Subscriptions
  ☆55Updated 9 years ago