Alternatives and similar repositories for EvtXHunt

Users that are interested in EvtXHunt are comparing it to the libraries listed below

• sathwikv143 / Autopsy-Whatsapp-Plugin

  View on GitHub
  ☆10May 1, 2020Updated 5 years ago
• digitalsleuth / forensics_tools

  View on GitHub
  Various short scripts and tools used for Digital Forensics
  ☆14Apr 13, 2025Updated 10 months ago
• williballenthin / Autopsy-WindowsRegistryContentViewer

  View on GitHub
  no longer maintained
  ☆18Feb 22, 2018Updated 7 years ago
• markmckinnon / Autopsy-NBM-Plugins

  View on GitHub
  Autopsy NBM Plugins
  ☆18Jul 9, 2023Updated 2 years ago
• netskopeoss / BOMSkope

  View on GitHub
  ☆10Jan 28, 2025Updated last year
• evild3ad / Get-MiniTimeline

  View on GitHub
  Get-MiniTimeline - Triage Collection and Timeline Generation w/ KAPE
  ☆32May 25, 2024Updated last year
• HotCakeX / MicrosoftDomains

  View on GitHub
  This repository lists all active Microsoft domains | no URLs and no sub-domains | for the purpose of Whitelisting in various systems and …
  ☆41Jan 8, 2026Updated last month
• AirspaceTechnologies / go-mapbox

  View on GitHub
  Mapbox API Client for Go
  ☆12Dec 12, 2024Updated last year
• AdamMOdell / OSINT-equals-star

  View on GitHub
  OSINT=*, Chrome extension that searches all the threat feeds
  ☆11Dec 5, 2021Updated 4 years ago
• Brandon-Everhart / Practical-Malware-Analysis

  View on GitHub
  Personal notes and lab results pertaining to the text "Practical Malware Analysis" by Michael Sikorski and Andrew Honiq.
  ☆12Oct 28, 2017Updated 8 years ago
• alternat0r / training-basic-malware-analysis

  View on GitHub
  In this training will be covered about a very basic step for malware analysis. Using several free tools to recognize malware behavior. Si…
  ☆12May 25, 2016Updated 9 years ago
• fportantier / mosnar

  View on GitHub
  Ransomware Detection Test PowerShell Script
  ☆11Sep 22, 2017Updated 8 years ago
• makitos666 / MFT_Fast_Transcoder

  View on GitHub
  MFT Fast Transcoder is a fast forensic tool to analyze MFT of NTFS partitions.
  ☆12Feb 27, 2023Updated 2 years ago
• serializingme / gpo-bypass

  View on GitHub
  GPO Bypass is a tool / proof-of-concept that highlights how one can bypass Group Policy enforced policies. It uses Firefox as an example.
  ☆14Jan 28, 2023Updated 3 years ago
• svch0stz / TheThreatHuntLibrary

  View on GitHub
  Library of threat hunts to get any user started!
  ☆48Sep 4, 2020Updated 5 years ago
• yarox24 / EvtxHussar

  View on GitHub
  Initial triage of Windows Event logs
  ☆106Jun 16, 2024Updated last year
• Aldenar / salt-malware-sources

  View on GitHub
  Source files found after a recent hack of one of my machines, showing how the infection spreads itself and what it does, useful for analy…
  ☆13May 4, 2020Updated 5 years ago
• openhunting-io / ohcti-malwareinfra

  View on GitHub
  Threat Hunting Malware Infrastructure
  ☆11Dec 3, 2023Updated 2 years ago
• k4m4 / hash-detector-cli

  View on GitHub
  Detect the possible hash-types corresponding to a string, right from your terminal.
  ☆11Jan 5, 2023Updated 3 years ago
• Veixlix / Cleandows-10

  View on GitHub
  Scripts that disables unwanted windows features
  ☆15Jan 6, 2023Updated 3 years ago
• mdegrazia / KAPE_Tools

  View on GitHub
  Tools and Binaries to use with KAPE
  ☆13Aug 13, 2019Updated 6 years ago
• CERT-EDF / generaptor

  View on GitHub
  CLI generator for Velociraptor offline collector
  ☆15Oct 10, 2025Updated 4 months ago
• m2sup3rn0va / SiAAA

  View on GitHub
  Small wiki for Mobile Application Penetration Testing Tools
  ☆12Apr 8, 2021Updated 4 years ago
• Velocidex / registry_hunter

  View on GitHub
  Hunt the windows Registry automatically using VQL
  ☆13Jan 6, 2026Updated last month
• ricardocanelas / node-express-mongodb-restful-example

  View on GitHub
  Simple RESTful API implementation on Node.js + Express + MongoDB.
  ☆10Jan 23, 2023Updated 3 years ago
• qbrusa / Windows-Security-Event-ID-Helper

  View on GitHub
  This repository provide a json file for all Windows security Event IDs with lot of useful informations (Categories, GPO, Volume, Recomman…
  ☆11Mar 2, 2023Updated 2 years ago
• isaudits / parsers

  View on GitHub
  Miscellaneous parsing scripts for penetration testing
  ☆12Jul 17, 2023Updated 2 years ago
• VeeamHub / veeam-decoy

  View on GitHub
  A simple server to act as a Veeam "honeypot" providing alerting for network scans for Veeam services
  ☆15Aug 31, 2025Updated 5 months ago
• MMquant / DNSweeper

  View on GitHub
  Asynchronous public DNS auditing tool
  ☆11May 22, 2023Updated 2 years ago
• AllsafeCyberSecurity / Ghidra_FIDB

  View on GitHub
  Function ID for Malware Analysis
  ☆13Jul 6, 2020Updated 5 years ago
• fivecar / react-native-background-downloader-queue

  View on GitHub
  A wifi-aware background downloader that maintains a queue of files
  ☆11Sep 25, 2025Updated 4 months ago
• mass-project / mass_server

  View on GitHub
  Malware Analysis and Storage System - Server repository
  ☆12Jul 15, 2022Updated 3 years ago
• gustavoparedes / QuickLog

  View on GitHub
  Is a portable forensic tool for analyzing Windows logs, pre-organized according to the methodology outlined in this job: https://cybersec…
  ☆14Jul 19, 2025Updated 6 months ago
• AzzOnFire / yarka

  View on GitHub
  IDA plugin for YARA signature creation
  ☆18Nov 30, 2025Updated 2 months ago
• NoelV11 / DFIR-Training

  View on GitHub
  Digital Forensics and Incident Response notes and Autopsy tool walkthrough
  ☆11Feb 3, 2022Updated 4 years ago
• Harvester57 / Exploit-Protection-policy

  View on GitHub
  ☆10May 30, 2025Updated 8 months ago
• nitrogenez / bully

  View on GitHub
  An Android lock screen brute-force software
  ☆10Sep 24, 2023Updated 2 years ago
• datadiode / webview2

  View on GitHub
  OpennessWebView2 Control
  ☆14Oct 15, 2023Updated 2 years ago
• IntelCorgi / OSINT_CyberChef_Recipes

  View on GitHub
  A collection of cyberchef recipes for use in osint investigations
  ☆14Jul 2, 2022Updated 3 years ago