Seabreg / RegshotLinks
Regshot is a small, free and open-source registry compare utility that allows you to quickly take a snapshot of your registry and then compare it with a second one - done after doing system changes or installing a new software product
☆365Updated 5 years ago
Alternatives and similar repositories for Regshot
Users that are interested in Regshot are comparing it to the libraries listed below
Sorting:
- Prefetch Explorer Command Line☆258Updated 4 months ago
- Forensics tool for NTFS (parser, mft, bitlocker, deleted files)☆520Updated last year
- Lnk Explorer Command line edition!!☆308Updated 4 months ago
- $MFT directory tree reconstruction & FILE record info☆305Updated 8 months ago
- Arsenal Image Mounter mounts the contents of disk images as complete disks in Microsoft Windows.☆610Updated last week
- Simple tool for retrieving information about Windows errors codes.☆284Updated 3 weeks ago
- Windows 10/11 hardening scripts☆252Updated 5 months ago
- Extract $MFT record info and log it to a csv file.☆271Updated 8 months ago
- This is a fork of Regshot (original found at https://sourceforge.net/projects/regshot/) with very enhanced functionality.☆76Updated 4 years ago
- MemProcFS-Analyzer - Automated Forensic Analysis of Windows Memory Dumps for DFIR☆629Updated 2 months ago
- Parses $MFT from NTFS file systems☆243Updated last month
- A tool that takes over Windows Updates to craft custom downgrades and expose past fixed vulnerabilities☆666Updated 7 months ago
- Handbook of windows forensic artifacts across multiple Windows version with interpretation tips and some examples. Work in progress!☆357Updated 9 months ago
- RegRipper3.0☆612Updated 5 months ago
- A PowerShell script that attempts to help malware analysts hide their VMware Windows VM's from malware that may be trying to evade analys…☆356Updated 4 months ago
- A PowerShell script that attempts to help malware analysts hide their Windows VirtualBox Windows VM's from malware that may be trying to …☆294Updated 2 years ago
- The multi-platform memory acquisition tool.☆800Updated 6 months ago
- Encyclopedia for Executables☆444Updated 3 years ago
- Windows Registry Knowledge Base☆174Updated 8 months ago
- snippets for power users☆328Updated 4 months ago
- PowerShell Set File Type Association☆308Updated 2 years ago
- File(s)/Folder(s) "Send to" menu .bat ascii encoder with optional password and makecab lzx compression☆231Updated 3 years ago
- Content for sysinternals.com☆71Updated 5 years ago
- Documentation and tools to access Windows Defender Application Control (WDAC) technology.☆230Updated this week
- 🚀AutoRuns is a PowerShell module that will help do live incident response and enumerate autoruns artifacts that may be used by legitima…☆273Updated 5 months ago
- PowerDecode is a PowerShell-based tool that allows to deobfuscate PowerShell scripts obfuscated across multiple layers. The tool performs…☆188Updated last year
- A wireshark plugin to instrument ETW☆559Updated 3 years ago
- A small tool that allows to run WinAPI functions through command line parameters☆195Updated 2 years ago
- ☆517Updated 5 months ago
- http://moaistory.blogspot.com/2018/10/winsearchdbanalyzer.html☆122Updated 10 months ago