Alternatives and similar repositories for Chromagnon:

Users that are interested in Chromagnon are comparing it to the libraries listed below

• keydet89 / RegRipper4.0
  RegRipper4.0
  ☆47Updated last year
• stuxnet999 / FileSigExtractor
  FileSigExtractor is a python based tool which extracts the file signatures of all files within a directory and writes the output to a CSV…
  ☆11Updated last year
• strozfriedberg / qelp
  Quick ESXi Log Parser
  ☆19Updated 3 months ago
• acquiredsecurity / forensic-timeliner
  A high-speed forensic timeline creation tool for DFIR Investigators to quickly combine CSV files from EZ Tools/Kape, Axiom, Hayabusa, Cha…
  ☆42Updated last week
• Beercow / DFIR_Toolbar
  ☆21Updated 3 months ago
• 00010111 / gMetaDataParse
  ☆20Updated last month
• stuxnet999 / EventTranscriptParser
  Python based tool to extract forensic info from EventTranscript.db (Windows Diagnostic Data)
  ☆68Updated last year
• ydkhatri / jarp
  Just Another broken Registry Parser (JARP)
  ☆16Updated 11 months ago
• stark4n6 / Arc2Lite
  A simple script to read the contents of a zip/tar/folder and extract metadata
  ☆19Updated last week
• kev365 / ToolFetcher
  A tool for fetching DFIR and other GitHub tools.
  ☆23Updated 3 weeks ago
• stark4n6 / SQLiteWalker
  Python script to walk a folder or a zip file for SQLite Databases
  ☆38Updated last year
• openrelik / openrelik-deploy
  Tools and scripts to deploy and manage OpenRelik instances
  ☆13Updated 2 months ago
• northloopforensics / Bitlocker_Key_Finder
  Search datasets for Bitlocker recovery files and triage live systems for Bitlocker keys.
  ☆41Updated 3 months ago
• stuxnet999 / volatility-binaries
  Contains compiled binaries of Volatility
  ☆33Updated 3 months ago
• AndrewRathbun / ForensicImageKAPEOutput
  A repository of output using KAPE (!EZParser Module) for various publicly available forensic images!
  ☆16Updated 7 months ago
• The-DFIR-Report / cyberchef-recipes
  ☆19Updated 2 years ago
• LincolnLandForensics / HodgePodge
  /ˈhäjˌpäj/ "a confused mixture."
  ☆13Updated 2 weeks ago
• ANSSI-FR / orc2timeline
  orc2timeline extracts and analyzes artifacts contained in archives generated with DFIR-ORC.exe to create a timeline from them
  ☆33Updated 5 months ago
• CyberCX-DFIR / usnjrnl_rewind
  USN Journal full path builder
  ☆59Updated 7 months ago
• EricZimmerman / SQLECmd
  ☆51Updated last month
• csababarta / memory-baseliner
  Memory Baseliner is a script that can compare two windows memory images or perform frequency of occurrence / data stacking analysis on mu…
  ☆52Updated last year
• gajos112 / SRUM-Timeliner
  ☆10Updated last year
• RandomRhythm / mal2csv
  Malformed Access Log to CSV - Convert Web Server Access Logs to CSV
  ☆17Updated 7 months ago
• mgreen27 / mcp-velociraptor
  VelociraptorMCP is a Model Context Protocol bridge for exposing LLMs to MCP clients.
  ☆17Updated last week
• theAtropos4n6 / Partition-4DiagnosticParser
  Windows Event Log "Microsoft-Windows-Partition%4Diagnostic.evtx" parser and devices' VSNs extractor.
  ☆19Updated last year
• dwmetz / detonaRE
  Capture. Detonate. Collect
  ☆14Updated 7 months ago
• AndrewRathbun / DFIRPowerShellScripts
  Various PowerShells scripts I've made (or others have made) to automate some of the boring stuff in my everyday DFIR journey!
  ☆45Updated 7 months ago
• harelsegev / INDXRipper
  Carve file metadata from NTFS index ($I30) attributes
  ☆63Updated last year
• AndrewRathbun / Anti-Forensics-VHDX
  A sample VHDX file with multiple verbose examples of forensic and anti-forensics artifacts. Meant to be basic and can be expanded upon. P…
  ☆26Updated 2 years ago
• markmckinnon / cLeapp
  Chrome Logs Events and Protobuf Parser
  ☆38Updated 2 years ago