Seabreg / RegshotLinks
Regshot is a small, free and open-source registry compare utility that allows you to quickly take a snapshot of your registry and then compare it with a second one - done after doing system changes or installing a new software product
☆429Updated 6 years ago
Alternatives and similar repositories for Regshot
Users that are interested in Regshot are comparing it to the libraries listed below
Sorting:
- Prefetch Explorer Command Line☆274Updated 9 months ago
- A PowerShell script that attempts to help malware analysts hide their Windows VirtualBox Windows VM's from malware that may be trying to …☆353Updated 3 months ago
- Parses $MFT from NTFS file systems☆273Updated 5 months ago
- Forensics tool for NTFS (parser, mft, bitlocker, deleted files)☆542Updated 2 years ago
- Lnk Explorer Command line edition!!☆329Updated 9 months ago
- Arsenal Image Mounter mounts the contents of disk images as complete disks in Microsoft Windows.☆660Updated this week
- This is a fork of Regshot (original found at https://sourceforge.net/projects/regshot/) with very enhanced functionality.☆84Updated 4 years ago
- A PowerShell script that attempts to help malware analysts hide their VMware Windows VM's from malware that may be trying to evade analys…☆406Updated 9 months ago
- RegRipper3.0☆655Updated 10 months ago
- A tool that takes over Windows Updates to craft custom downgrades and expose past fixed vulnerabilities☆682Updated last year
- MemProcFS-Analyzer - Automated Forensic Analysis of Windows Memory Dumps for DFIR☆682Updated last week
- The multi-platform memory acquisition tool.☆866Updated 2 weeks ago
- Encyclopedia for Executables☆456Updated 3 years ago
- Total Registry - enhanced Registry editor/viewer☆1,547Updated 2 months ago
- Content for sysinternals.com☆75Updated 6 years ago
- A fast & handy alternative to Windows Event Viewer☆105Updated 5 months ago
- A GUI and CLI tool for removing bloat from executables☆432Updated 3 months ago
- Windows 10/11 hardening scripts☆260Updated last month
- $MFT directory tree reconstruction & FILE record info☆314Updated last year
- Microsoft Windows DLL Export Browser (Enumerate Exports, COM Methods and Properties) with Advanced Search Features.☆244Updated last year
- A wireshark plugin to instrument ETW☆574Updated 3 years ago
- An index of Windows binaries, including download links for executables such as exe, dll and sys files☆707Updated this week
- C# based evtx parser with lots of extras☆332Updated last month
- PowerDecode is a PowerShell-based tool that allows to deobfuscate PowerShell scripts obfuscated across multiple layers. The tool performs…☆216Updated last year
- Quick Lookup Plugin for PowerToys Run (Wox)☆173Updated 10 months ago
- Security. Automation. Analytics.☆58Updated 2 years ago
- Arcane - A secure remote desktop application for Windows with the particularity of having a server entirely written in PowerShell and…☆292Updated 3 months ago
- Handbook of windows forensic artifacts across multiple Windows version with interpretation tips and some examples. Work in progress!☆397Updated last year
- 🚀AutoRuns is a PowerShell module that will help do live incident response and enumerate autoruns artifacts that may be used by legitima…☆282Updated 9 months ago
- Somes tools and scripts☆152Updated 4 years ago