Alternatives and similar repositories for forensic-rs

Users that are interested in forensic-rs are comparing it to the libraries listed below

• puffyCid / artemis
  A cross platform forensic parser written in Rust!
  ☆101Updated this week
• WithSecureLabs / tau-engine
  A document tagging library
  ☆33Updated 10 months ago
• elastic / Silhouette
  Keep it secret, keep it safe
  ☆80Updated last year
• omerbenamram / winstructs
  Parsers for common structures across windows formats.
  ☆12Updated 2 years ago
• AbdulRhmanAlfaifi / lnk_parser
  lnk_parser is a full rust implementation to parse windows LNK files
  ☆22Updated 7 months ago
• dwmetz / MalChela
  A YARA & Malware Analysis Toolkit written in Rust.
  ☆92Updated this week
• malwaredb / malwaredb-rs
  MalwareDB: bookkeeping for malware, goodware, and unknown files with relationship discovery
  ☆56Updated this week
• vobst / BPFVol3
  Linux BPF plugins for Volatility3
  ☆23Updated 2 years ago
• NextronSystems / gimphash
  Imphash-like calculation on Golang binaries
  ☆49Updated 3 years ago
• JPCERTCC / etw-scan
  ETW forensic tool for Volatility3 plugin
  ☆17Updated last year
• airbus-cert / minusone
  Powershell Linter
  ☆86Updated 2 months ago
• rusty-ferris-club / recon
  🕵️‍♀️ Find, locate, and query files for ops and security experts ⚡️⚡️⚡️
  ☆37Updated 3 years ago
• jstrosch / FLARE-VM-configs
  These FLARE-VM configuration files are designed to be help setup a purpose-built installation, remove unnecessary packages to help stream…
  ☆15Updated last year
• brokensound77 / LoFP
  Living off the False Positive!
  ☆41Updated last year
• theflakes / fmd
  Windows file metadata / forensic tool.
  ☆18Updated 3 months ago
• MikeHorn-git / WAFS
  Hardened your Windows OS against forensics analysis
  ☆22Updated last year
• knight0x07 / OneNoteAnalyzer
  A C# based tool for analysing malicious OneNote documents
  ☆118Updated 2 years ago
• c2links / NoWhere2Hide
  C2 Active Scanner
  ☆59Updated last year
• RussianPanda95 / Configuration_extractors
  Configuration Extractors for Malware
  ☆123Updated 9 months ago
• embee-research / Yara-detection-rules
  Yara Rules for Modern Malware
  ☆78Updated last year
• dr4k0nia / yara-rules
  A collection of my yara rules
  ☆34Updated 2 years ago
• secur30nly / netuser-rs
  Rust bindings to Microsoft Windows users / groups management API
  ☆34Updated last month
• tstromberg / sunlight
  Linux #rootkit and #malware revealer
  ☆31Updated last year
• harelsegev / INDXRipper
  Carve file metadata from NTFS index ($I30) attributes
  ☆71Updated 2 years ago
• malpedia / malpedia-flossed
  FLARE floss applied to all unpacked+dumped samples in Malpedia, pre-processed for further use.
  ☆70Updated last month
• Yamato-Security / Presentations
  ☆21Updated 2 months ago
• referefref / canarytokendetector
  Detect and remove the presence of canary tokens
  ☆25Updated 2 years ago
• 0x534a / dynmx
  Signature-based detection of malware features based on Windows API call sequences. It's like YARA for sandbox API traces!
  ☆82Updated 2 years ago
• ACE-Responder / ace-proctree
  Create a cool process tree like https://twitter.com/ACEResponder.
  ☆35Updated 2 years ago
• WhiteBeamSec / WhiteBeam
  WhiteBeam: Transparent endpoint security
  ☆101Updated 2 years ago