Alternatives and similar repositories for forensic-rs

Users that are interested in forensic-rs are comparing it to the libraries listed below

• elastic / Silhouette
  Keep it secret, keep it safe
  ☆79Updated 10 months ago
• WithSecureLabs / tau-engine
  A document tagging library
  ☆31Updated 8 months ago
• AbdulRhmanAlfaifi / lnk_parser
  lnk_parser is a full rust implementation to parse windows LNK files
  ☆22Updated 5 months ago
• puffyCid / artemis
  A cross platform forensic parser written in Rust!
  ☆98Updated 2 weeks ago
• dwmetz / MalChela
  A YARA & Malware Analysis Toolkit written in Rust.
  ☆78Updated 2 months ago
• secur30nly / netuser-rs
  Rust bindings to Microsoft Windows users / groups management API
  ☆34Updated 2 years ago
• vobst / BPFVol3
  Linux BPF plugins for Volatility3
  ☆24Updated last year
• embee-research / Yara-detection-rules
  Yara Rules for Modern Malware
  ☆78Updated last year
• MikeHorn-git / WAFS
  Hardened your Windows OS against forensics analysis
  ☆22Updated last year
• airbus-cert / minusone
  Powershell Linter
  ☆86Updated this week
• c2links / NoWhere2Hide
  C2 Active Scanner
  ☆60Updated last year
• NextronSystems / gimphash
  Imphash-like calculation on Golang binaries
  ☆49Updated 3 years ago
• BinaryDefense / GhidraRustDependenciesExtractor
  Ghidra script for extracting embedded Rust crate dependency strings from a compiled Rust binary
  ☆35Updated 3 years ago
• DissectMalware / yaradbg-frontend
  ☆39Updated last year
• fr0gger / MalwareMuncher
  Malware Muncher is a proof-of-concept Python script that utilizes the Frida framework for binary instrumentation and API hooking, enablin…
  ☆46Updated 2 years ago
• 0x534a / dynmx
  Signature-based detection of malware features based on Windows API call sequences. It's like YARA for sandbox API traces!
  ☆82Updated 2 years ago
• WhiteBeamSec / WhiteBeam
  WhiteBeam: Transparent endpoint security
  ☆101Updated 2 years ago
• Velocidex / Linpmem
  Linpmem is a linux memory acquisition tool
  ☆94Updated 5 months ago
• dr4k0nia / yara-rules
  A collection of my yara rules
  ☆34Updated 2 years ago
• volexity / GoResolver
  GoResolver is a Go analysis tool using both Go symbol extraction and Control Flow Graph (CFG) similarity to identify and resolve the func…
  ☆75Updated 3 months ago
• RussianPanda95 / Configuration_extractors
  Configuration Extractors for Malware
  ☆121Updated 7 months ago
• omerbenamram / winstructs
  Parsers for common structures across windows formats.
  ☆12Updated 2 years ago
• JPCERTCC / etw-scan
  ETW forensic tool for Volatility3 plugin
  ☆17Updated last year
• jstrosch / FLARE-VM-configs
  These FLARE-VM configuration files are designed to be help setup a purpose-built installation, remove unnecessary packages to help stream…
  ☆15Updated last year
• StrangerealIntel / Shadow-Pulse
  information about ransomware groups (Ransomware Analysis Notes)
  ☆40Updated last year
• bobby-tablez / TTP-Threat-Feeds
  Threat feeds designed to extract adversarial TTPs and IOCs, using: ✨AI✨
  ☆38Updated this week
• knight0x07 / OneNoteAnalyzer
  A C# based tool for analysing malicious OneNote documents
  ☆118Updated 2 years ago
• rusty-ferris-club / recon
  🕵️‍♀️ Find, locate, and query files for ops and security experts ⚡️⚡️⚡️
  ☆36Updated 2 years ago
• herosi / triage-collector
  ☆23Updated last year
• airbus-seclab / nbutools
  Tools for offensive security of NetBackup infrastructures
  ☆42Updated 2 years ago