Velocidex/regparser

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/Velocidex/regparser)

Velocidex / regparser

A Golang Registry parser

☆20

Alternatives and similar repositories for regparser

Users that are interested in regparser are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

Sorting:

Velocidex / go-prefetch
View on GitHub
A golang implementation of a prefetch parser.
☆20Oct 27, 2025Updated 5 months ago
Velocidex / oleparse
View on GitHub
Golang parser for OLE files
☆33Dec 4, 2025Updated 4 months ago
Velocidex / evtx
View on GitHub
Golang Parser for Microsoft Event Logs
☆108Nov 7, 2025Updated 5 months ago
omerbenamram / winstructs
View on GitHub
Parsers for common structures across windows formats.
☆12Aug 23, 2023Updated 2 years ago
Velocidex / go-ntfs
View on GitHub
An NTFS file parser in Go
☆72Mar 31, 2026Updated last week
Proton VPN Special Offer - Get 70% off • Ad
Special partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
Velocidex / go-pe
View on GitHub
A Portable Executable parser for Golang
☆48Nov 7, 2025Updated 5 months ago
Velocidex / go-yara
View on GitHub
Go bindings for YARA
☆14Aug 24, 2025Updated 7 months ago
justenwalker / gophercon-2020-winapi
View on GitHub
Go Windows API Examples
☆21Apr 23, 2023Updated 2 years ago
mobdk / CoreClass
View on GitHub
Mimikatz embedded as classes
☆28Oct 25, 2021Updated 4 years ago
jschicht / SetRegTime
View on GitHub
Registry timestamp manipulation
☆18Feb 26, 2014Updated 12 years ago
elastic / sans-dfir-2022
View on GitHub
Repo with supporting material for the talk titled "Cracking the Beacon: Automating the extraction of implant configurations"
☆11Feb 6, 2025Updated last year
rvrsh3ll / CrypoCurrencyPowerShell
View on GitHub
☆30Jul 17, 2018Updated 7 years ago
dwmetz / Axiom-PowerShell
View on GitHub
PowerShell scripts to aid investigators when utilizing O365 and Magnet Axiom.
☆12Aug 26, 2024Updated last year
CIRCL / PyRichHeader
View on GitHub
A Python parser for Rich Headers
☆15Jun 2, 2015Updated 10 years ago
DigitalOcean Gradient AI Platform • Ad
Build production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
taviso / iknowthis
View on GitHub
iknowthis Linux SystemCall Fuzzer
☆20Apr 18, 2019Updated 6 years ago
dfirlabs / ntfs-specimens
View on GitHub
NTFS file system specimens
☆13Jul 3, 2023Updated 2 years ago
barn / curlbrash
View on GitHub
Put an end to curl | bash with this one weird trick
☆17Oct 24, 2015Updated 10 years ago
xorrior / Leviathan
View on GitHub
A simple, quick, and dirty websocket shell for PowerShell.
☆20Jun 5, 2017Updated 8 years ago
libyal / reviveit
View on GitHub
ReviveIT (revit) is a proof of concept file recovery tool (carver)
☆13Dec 3, 2020Updated 5 years ago
dwmetz / Mal-Hash
View on GitHub
This script will generate hashes (MD5, SHA1, SHA256), submit the MD5 to Virus Total, and produce a text file with the results.
☆15Jul 13, 2023Updated 2 years ago
golang-devops / go-psexec
View on GitHub
The plan is to have a replacement for psexec
☆32Aug 15, 2018Updated 7 years ago
maxlandon / wiregost
View on GitHub
Golang Implant & Post-Exploitation Framework
☆60Jun 30, 2023Updated 2 years ago
turekt / knockknockgo
View on GitHub
Pure Go rewrite of knockknock
☆11Feb 7, 2023Updated 3 years ago
Wordpress hosting with auto-scaling on Cloudways • Ad
Fully Managed hosting built for WordPress-powered businesses that need reliable, auto-scalable hosting. Cloudways SafeUpdates now available.
jupyterj0nes / sabonis
View on GitHub
Sabonis, a Digital Forensics and Incident Response pivoting tool
☆19Mar 3, 2022Updated 4 years ago
mkorman90 / regipy
View on GitHub
Regipy is an os independent python library for parsing offline registry hives
☆271Mar 5, 2026Updated last month
Error996 / bdvl
View on GitHub
bdvl
☆117Feb 26, 2022Updated 4 years ago
srlkhmi / DeViL
View on GitHub
It is demonstration tool that contains collection techniques to detect the virtualisation environment in Linux Operating System.
☆22Sep 23, 2018Updated 7 years ago
WJDigby / hashms
View on GitHub
Periodically check hashcat cracking progress and notify of success.
☆10Dec 18, 2018Updated 7 years ago
transitorykris / hypnos
View on GitHub
A sleepy cron
☆13Nov 8, 2017Updated 8 years ago
dichotomy / scorebot
View on GitHub
Scoring Engine for CTF competitions
☆48Feb 15, 2023Updated 3 years ago
capnspacehook / pandorasbox
View on GitHub
An intuitive and encrypted in-memory filesystem (VFS)
☆101Nov 20, 2025Updated 4 months ago
coldfusion39 / excel-press
View on GitHub
Python script to compress VBA macro files
☆24Feb 2, 2023Updated 3 years ago
Proton VPN Special Offer - Get 70% off • Ad
Special partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
blacklotuslabs / Research
View on GitHub
The mission of Black Lotus Labs is to leverage our network visibility to both help protect customers and keep the internet clean.
☆12Jun 18, 2021Updated 4 years ago
William-Yeh / fswatch
View on GitHub
fswatch - Watch for changes in file system
☆12Jun 13, 2019Updated 6 years ago
redcode-labs / Solaris
View on GitHub
A local LKM rootkit loader/dropper that lists available security mechanisms
☆53Sep 4, 2021Updated 4 years ago
awgh / rawreader
View on GitHub
Implements io.ReaderAt over raw memory.
☆13Jun 26, 2020Updated 5 years ago
KasperskyLab / ForensicsTools
View on GitHub
Tools for DFIR
☆122Jan 25, 2018Updated 8 years ago
MatthewClarkMay / fTriage
View on GitHub
Automating forensic data extraction, reduction, and overall triage of cold disk and memory images.
☆21Mar 12, 2019Updated 7 years ago
herosi / triage-collector
View on GitHub
☆23Oct 9, 2024Updated last year