EricZimmerman/PECmd external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

EricZimmerman/PECmd

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/EricZimmerman/PECmd)

Close

EricZimmerman / PECmdView on GitHubMore

• External links
• Readme badge

Prefetch Explorer Command Line

☆286Jan 12, 2025Updated last year

Alternatives and similar repositories for PECmd

Users that are interested in PECmd are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• EricZimmerman / AppCompatCacheParser

  View on GitHub
  AppCompatCache (shimcache) parser. Supports Windows 7 (x86 and x64), Windows 8.x, and Windows 10, and Windows 11
  ☆129Jan 12, 2025Updated last year
• EricZimmerman / Prefetch

  View on GitHub
  Windows Prefetch parser. Supports all known versions from Windows XP to Windows 10.
  ☆116Jan 8, 2025Updated last year
• EricZimmerman / RecentFileCacheParser

  View on GitHub
  Parses RecentFileCacheParser.bcf files
  ☆30Feb 2, 2025Updated last year
• EricZimmerman / AmcacheParser

  View on GitHub
  Parses amcache.hve files, but with a twist!
  ☆151Jan 12, 2025Updated last year
• EricZimmerman / RECmd

  View on GitHub
  Command line access to the Registry
  ☆167Updated this week
• EricZimmerman / RBCmd

  View on GitHub
  Recycle bin artifact parser
  ☆61Feb 2, 2025Updated last year
• EricZimmerman / evtx

  View on GitHub
  C# based evtx parser with lots of extras
  ☆348Sep 4, 2025Updated 6 months ago
• EricZimmerman / USBDevices

  View on GitHub
  Get USB Devices from Registry hives
  ☆22Nov 15, 2021Updated 4 years ago
• EricZimmerman / bstrings

  View on GitHub
  A better strings utility!
  ☆149Feb 8, 2026Updated last month
• EricZimmerman / MFTECmd

  View on GitHub
  Parses $MFT from NTFS file systems
  ☆304Feb 16, 2026Updated last month
• EricZimmerman / SDB

  View on GitHub
  Parse Microsoft shim databases
  ☆32Jan 8, 2025Updated last year
• EricZimmerman / WxTCmd

  View on GitHub
  ☆26Aug 20, 2025Updated 7 months ago
• EricZimmerman / Issues

  View on GitHub
  This is a repository for reporting any issues in any of my software
  ☆13May 15, 2018Updated 7 years ago
• EricZimmerman / JLECmd

  View on GitHub
  Automatic and Custom Destinations jump list parser with Windows 10 support
  ☆114Sep 25, 2025Updated 5 months ago
• EricZimmerman / OleCf

  View on GitHub
  Library to process OLE compound file format. This is a work in progress and was initially written for jumplist parsing (for which it does…
  ☆19Feb 2, 2025Updated last year
• EricZimmerman / TLEFilePlugins

  View on GitHub
  Plugins for parsing CSV files in Timeline Explorer. This project allows for anyone to add more supported files (i,e. they get a Line #/ta…
  ☆30May 5, 2025Updated 10 months ago
• EricZimmerman / JumpList

  View on GitHub
  ☆134Feb 3, 2026Updated last month
• EricZimmerman / RegistryExplorerBookmarks

  View on GitHub
  Registry Explorer bookmark definitions
  ☆44Dec 19, 2024Updated last year
• EricZimmerman / iisGeolocate

  View on GitHub
  geolocate ip addresses in IIS logs
  ☆20Jan 8, 2025Updated last year
• EricZimmerman / LECmd

  View on GitHub
  Lnk Explorer Command line edition!!
  ☆334Jan 10, 2025Updated last year
• EricZimmerman / ExtensionBlocks

  View on GitHub
  Extension blocks as found in ShellBags and other places in the Registry
  ☆25Jan 7, 2025Updated last year
• EricZimmerman / VSCMount

  View on GitHub
  Mount VSCs with ease!
  ☆18Jan 22, 2025Updated last year
• EricZimmerman / SQLECmd

  View on GitHub
  ☆61Jan 28, 2026Updated last month
• EricZimmerman / RegistryPlugins

  View on GitHub
  ☆77Mar 3, 2026Updated 2 weeks ago
• EricZimmerman / Lnk

  View on GitHub
  Lnk file parser
  ☆92May 27, 2025Updated 9 months ago
• EricZimmerman / MFT

  View on GitHub
  MFT parser
  ☆74Feb 2, 2025Updated last year
• EricZimmerman / Registry

  View on GitHub
  Full featured, offline Registry parser in C#
  ☆247Feb 7, 2026Updated last month
• open-source-dfir / slack

  View on GitHub
  Information about the open-source-dfir slack community
  ☆30Jun 17, 2023Updated 2 years ago
• EricZimmerman / Get-ZimmermanTools

  View on GitHub
  Get all my software
  ☆188Feb 7, 2026Updated last month
• EricZimmerman / KapeFiles

  View on GitHub
  This repository serves as a place for community created Targets and Modules for use with KAPE.
  ☆824Mar 12, 2026Updated last week
• mbevilacqua / appcompatprocessor

  View on GitHub
  "Evolving AppCompat/AmCache data analysis beyond grep"
  ☆209Sep 15, 2021Updated 4 years ago
• EricZimmerman / Sum

  View on GitHub
  ☆20Jan 10, 2025Updated last year
• EricZimmerman / GuidMapping

  View on GitHub
  ☆24Jan 12, 2026Updated 2 months ago
• ANSSI-FR / bmc-tools

  View on GitHub
  RDP Bitmap Cache parser
  ☆640Jan 21, 2025Updated last year
• gajos112 / PowerShell-Timeliner

  View on GitHub
  ☆12Jun 3, 2022Updated 3 years ago
• EricZimmerman / ericzimmerman.github.io

  View on GitHub
  Software downloads
  ☆111Feb 7, 2026Updated last month
• mandiant / ShimCacheParser

  View on GitHub
  ☆280Apr 6, 2023Updated 2 years ago
• EricZimmerman / Srum

  View on GitHub
  ☆51Nov 25, 2025Updated 3 months ago
• BSI-Bund / RdpCacheStitcher

  View on GitHub
  RdpCacheStitcher is a tool that supports forensic analysts in reconstructing useful images out of RDP cache bitmaps.
  ☆315Sep 3, 2023Updated 2 years ago