Alternatives and similar repositories for forensic-rs

Users that are interested in forensic-rs are comparing it to the libraries listed below

• BinaryDefense / GhidraRustDependenciesExtractor
  Ghidra script for extracting embedded Rust crate dependency strings from a compiled Rust binary
  ☆29Updated 2 years ago
• elastic / Silhouette
  Keep it secret, keep it safe
  ☆77Updated 4 months ago
• secur30nly / netuser-rs
  Rust bindings to Microsoft Windows users / groups management API
  ☆33Updated last year
• anyrun / YARA
  ☆19Updated 7 months ago
• AbdulRhmanAlfaifi / lnk_parser
  lnk_parser is a full rust implementation to parse windows LNK files
  ☆20Updated last month
• puffyCid / artemis
  A cross platform forensic parser written in Rust!
  ☆83Updated this week
• mtth-bfft / evtq
  Windows eventlog formatting, live fetching and querying utility in C
  ☆20Updated 5 years ago
• WhiteBeamSec / WhiteBeam
  WhiteBeam: Transparent endpoint security
  ☆101Updated 2 years ago
• Abyss-W4tcher / volatility-scripts
  This repository contains a variety of plugins and scripts, related to the Volatility framework.
  ☆15Updated 4 months ago
• Yamato-Security / Presentations
  ☆18Updated 2 months ago
• MikeHorn-git / WAFS
  Hardened your Windows OS against forensics analysis
  ☆21Updated 6 months ago
• DissectMalware / yaradbg-frontend
  ☆39Updated last year
• WithSecureLabs / tau-engine
  A document tagging library
  ☆30Updated 2 months ago
• referefref / canarytokendetector
  Detect and remove the presence of canary tokens
  ☆22Updated last year
• melotic / nanostorm
  An (WIP) EDR Evasion tool for x64 Windows & Linux binaries that utilizes Nanomites, written in Rust.
  ☆19Updated 6 months ago
• byt3bl33d3r / playwright-heap-snapshot
  API and CLI tool to fetch and query Chome DevTools heap snapshots (Python & Playwright)
  ☆14Updated last year
• Teach2Breach / schtask
  Rust implementation, creating a scheduled task programmatically with user logon trigger.
  ☆36Updated 2 weeks ago
• aancw / DllProxy-rs
  Rust Implementation of SharpDllProxy for DLL Proxying Technique
  ☆30Updated 2 years ago
• Peco602 / rusthunter
  RustHunter is a modular incident response framework based on Rust and Ansible to build and compare environmental baselines.
  ☆18Updated 2 years ago
• leandrofroes / malware-research
  General malware analysis stuff
  ☆37Updated 10 months ago
• AbdulRhmanAlfaifi / SDSParser-rs
  NTFS Security Descriptor Stream ($Secure:$SDS) parser
  ☆14Updated 2 years ago
• OSTEsayed / OSTE-MalStatWare
  MalStatWare automates malware analysis with Python. Extract key details like file size, type, hash, path, and digital signature. It analy…
  ☆29Updated last year
• MiBaLToALeX / ShellOrd
  ShellOrd is a C2 (Command & Control) framework cross-platform and agent written in Rust & Java
  ☆14Updated 9 months ago
• NextronSystems / CyberChef
  CyberChef - Detection Engineering, TI, DFIR, Malware Analysis Edition
  ☆63Updated 2 years ago
• Cainor / Calendarinho
  Manage Your Large Team of Consultants
  ☆11Updated 4 months ago
• priamai / sigmatau
  An extension of the sigma standard to include security metrics.
  ☆15Updated 2 years ago
• MythicAgents / apfell
  JavaScript for Automation (JXA) macOS agent
  ☆84Updated 2 weeks ago
• randomaccess3 / block-parser
  Parser for Windows PowerShell script block logs
  ☆13Updated 5 months ago
• malienist / vovk
  Vovk is framework of tools that include a WinDbg extension that generates in-depth YARA rules for malware.
  ☆23Updated 10 months ago
• NextronSystems / gimphash
  Imphash-like calculation on Golang binaries
  ☆49Updated 2 years ago