Alternatives and similar repositories for forensic-rs

Users that are interested in forensic-rs are comparing it to the libraries listed below

• puffyCid / artemis
  A cross platform forensic parser written in Rust!
  ☆95Updated this week
• secur30nly / netuser-rs
  Rust bindings to Microsoft Windows users / groups management API
  ☆34Updated last year
• AbdulRhmanAlfaifi / lnk_parser
  lnk_parser is a full rust implementation to parse windows LNK files
  ☆20Updated 2 months ago
• elastic / Silhouette
  Keep it secret, keep it safe
  ☆78Updated 7 months ago
• WithSecureLabs / tau-engine
  A document tagging library
  ☆30Updated 5 months ago
• omerbenamram / winstructs
  Parsers for common structures across windows formats.
  ☆12Updated 2 years ago
• WhiteBeamSec / WhiteBeam
  WhiteBeam: Transparent endpoint security
  ☆101Updated 2 years ago
• NextronSystems / gimphash
  Imphash-like calculation on Golang binaries
  ☆49Updated 3 years ago
• StrangerealIntel / Shadow-Pulse
  information about ransomware groups (Ransomware Analysis Notes)
  ☆39Updated last year
• MikeHorn-git / WAFS
  Hardened your Windows OS against forensics analysis
  ☆21Updated 9 months ago
• RussianPanda95 / Configuration_extractors
  Configuration Extractors for Malware
  ☆113Updated 4 months ago
• airbus-cert / minusone
  Powershell Linter
  ☆83Updated 2 weeks ago
• lxndrblz / forensicsim
  A forensic open-source parser module for Autopsy that allows extracting the messages, comments, posts, contacts, calendar entries and rea…
  ☆103Updated 2 weeks ago
• rusty-ferris-club / recon
  🕵️‍♀️ Find, locate, and query files for ops and security experts ⚡️⚡️⚡️
  ☆34Updated 2 years ago
• harelsegev / prefetch-hash-cracker
  A small util to brute-force prefetch hashes
  ☆78Updated 3 years ago
• jstrosch / FLARE-VM-configs
  These FLARE-VM configuration files are designed to be help setup a purpose-built installation, remove unnecessary packages to help stream…
  ☆15Updated last year
• 0xor0ne / qscan
  Quick network scanner library. https://crates.io/crates/qscan
  ☆86Updated 2 years ago
• Velocidex / Linpmem
  Linpmem is a linux memory acquisition tool
  ☆87Updated 2 months ago
• JPCERTCC / etw-scan
  ETW forensic tool for Volatility3 plugin
  ☆16Updated 10 months ago
• MalGamy / YARA_Rules
  ☆66Updated 2 years ago
• OSTEsayed / OSTE-MalStatWare
  MalStatWare automates malware analysis with Python. Extract key details like file size, type, hash, path, and digital signature. It analy…
  ☆30Updated last year
• hasherezade / pesieve-go
  Golang bindings for PE-sieve
  ☆42Updated last year
• bobby-tablez / TTP-Threat-Feeds
  Threat feeds designed to extract adversarial TTPs and IOCs, using: ✨AI✨
  ☆35Updated this week
• carbonblack / mockc2
  An interactive mock C2 server
  ☆17Updated 2 years ago
• 0x534a / dynmx
  Signature-based detection of malware features based on Windows API call sequences. It's like YARA for sandbox API traces!
  ☆83Updated 2 years ago
• embee-research / Yara-detection-rules
  Yara Rules for Modern Malware
  ☆79Updated last year
• c2links / NoWhere2Hide
  C2 Active Scanner
  ☆59Updated last year
• volexity / GoResolver
  GoResolver is a Go analysis tool using both Go symbol extraction and Control Flow Graph (CFG) similarity to identify and resolve the func…
  ☆70Updated last month
• fr0gger / MalwareMuncher
  Malware Muncher is a proof-of-concept Python script that utilizes the Frida framework for binary instrumentation and API hooking, enablin…
  ☆46Updated 2 years ago
• FarghlyMal / Config-Extractors
  ☆27Updated 9 months ago