Alternatives and similar repositories for forensic-rs

Users that are interested in forensic-rs are comparing it to the libraries listed below

• WithSecureLabs / tau-engine
  A document tagging library
  ☆32Updated 9 months ago
• puffyCid / artemis
  A cross platform forensic parser written in Rust!
  ☆99Updated this week
• elastic / Silhouette
  Keep it secret, keep it safe
  ☆80Updated 11 months ago
• rusty-ferris-club / recon
  🕵️‍♀️ Find, locate, and query files for ops and security experts ⚡️⚡️⚡️
  ☆36Updated 3 years ago
• AbdulRhmanAlfaifi / lnk_parser
  lnk_parser is a full rust implementation to parse windows LNK files
  ☆22Updated 5 months ago
• secur30nly / netuser-rs
  Rust bindings to Microsoft Windows users / groups management API
  ☆34Updated last week
• omerbenamram / winstructs
  Parsers for common structures across windows formats.
  ☆12Updated 2 years ago
• airbus-cert / minusone
  Powershell Linter
  ☆86Updated 3 weeks ago
• volexity / GoResolver
  GoResolver is a Go analysis tool using both Go symbol extraction and Control Flow Graph (CFG) similarity to identify and resolve the func…
  ☆75Updated 4 months ago
• embee-research / Yara-detection-rules
  Yara Rules for Modern Malware
  ☆78Updated last year
• dwmetz / MalChela
  A YARA & Malware Analysis Toolkit written in Rust.
  ☆89Updated 2 months ago
• WhiteBeamSec / WhiteBeam
  WhiteBeam: Transparent endpoint security
  ☆101Updated 2 years ago
• RussianPanda95 / Configuration_extractors
  Configuration Extractors for Malware
  ☆121Updated 8 months ago
• vobst / BPFVol3
  Linux BPF plugins for Volatility3
  ☆24Updated last year
• NextronSystems / gimphash
  Imphash-like calculation on Golang binaries
  ☆49Updated 3 years ago
• JPCERTCC / etw-scan
  ETW forensic tool for Volatility3 plugin
  ☆17Updated last year
• BinaryDefense / GhidraRustDependenciesExtractor
  Ghidra script for extracting embedded Rust crate dependency strings from a compiled Rust binary
  ☆36Updated 3 years ago
• MiBaLToALeX / ShellOrd
  ShellOrd is a C2 (Command & Control) framework cross-platform and agent written in Rust & Java
  ☆15Updated last year
• avast / yari
  YARI is an interactive debugger for YARA Language.
  ☆90Updated 3 months ago
• eversinc33 / TriageMCP
  Vibe Malware Triage - MCP server for static PE analysis.
  ☆73Updated last month
• 0xThiebaut / Signatures
  🚧 Currently transfering TLP:CLEAR rules from TLP:AMBER repository...
  ☆21Updated last year
• StrangerealIntel / Shadow-Pulse
  information about ransomware groups (Ransomware Analysis Notes)
  ☆40Updated 2 years ago
• lxndrblz / forensicsim
  A forensic open-source parser module for Autopsy that allows extracting the messages, comments, posts, contacts, calendar entries and rea…
  ☆113Updated 3 weeks ago
• herosi / triage-collector
  ☆23Updated last year
• harelsegev / prefetch-hash-cracker
  A small util to brute-force prefetch hashes
  ☆77Updated 3 years ago
• 0xor0ne / recmd
  Remote Command executor
  ☆81Updated 2 years ago
• 0x534a / dynmx
  Signature-based detection of malware features based on Windows API call sequences. It's like YARA for sandbox API traces!
  ☆82Updated 2 years ago
• priamai / sigmatau
  An extension of the sigma standard to include security metrics.
  ☆15Updated 2 years ago
• MikeHorn-git / WAFS
  Hardened your Windows OS against forensics analysis
  ☆22Updated last year
• tstromberg / sunlight
  Linux #rootkit and #malware revealer
  ☆30Updated last year