A document tagging library
☆33Mar 27, 2025Updated 11 months ago
Alternatives and similar repositories for tau-engine
Users that are interested in tau-engine are comparing it to the libraries listed below
Sorting:
- Wrapper for TSK (Sleuth Kit) Bindings☆12Jan 10, 2023Updated 3 years ago
- Parsers for common structures across windows formats.☆12Aug 23, 2023Updated 2 years ago
- Safe Rust API to libesedb☆12Sep 10, 2025Updated 5 months ago
- Manage Your Large Team of Consultants☆11Sep 18, 2025Updated 5 months ago
- Understanding the operation and limitations of Sysmon's events☆23Sep 15, 2022Updated 3 years ago
- A DFVFS Backed Forensic Viewer☆42Apr 13, 2020Updated 5 years ago
- USN to JSON☆22Apr 4, 2020Updated 5 years ago
- r0ak ("roak") is the Ring 0 Army Knife -- A Command Line Utility To Read/Write/Execute Ring Zero on for Windows 10 Systems☆28Aug 6, 2018Updated 7 years ago
- lnk_parser is a full rust implementation to parse windows LNK files☆23Feb 17, 2026Updated last week
- A Fast (and safe) parser for the Windows XML Event Log (EVTX) format☆883Feb 6, 2026Updated 3 weeks ago
- Queries for parsed spotlight database in sqlite☆13Dec 29, 2020Updated 5 years ago
- Just an example of a well-known technique to detect memory tampering via Windows Working Sets.☆18Jan 15, 2022Updated 4 years ago
- clean interface for the windows event log☆26Jun 8, 2024Updated last year
- Various WinDbg extensions and scripts☆33Sep 13, 2018Updated 7 years ago
- Some stuff for PHD2021☆14May 21, 2025Updated 9 months ago
- Hundred Days of Yara Challenge☆12Jun 21, 2022Updated 3 years ago
- ☆13Feb 25, 2021Updated 5 years ago
- Threat hunting with Sysmon and ArangoDB Graphs☆12Apr 16, 2020Updated 5 years ago
- Publicly shareable windows event log message data☆28Nov 29, 2019Updated 6 years ago
- siquery, a Rust osquery implementation to query system information☆59Oct 29, 2025Updated 4 months ago
- Web Application Vulnerability Exploiter (WAVE) is basically a vulnerability scanner which scans for Secuirity Vulnerabilities in web appl…☆26Oct 5, 2025Updated 4 months ago
- Decoders for 7ev3n ransomware☆17Oct 24, 2016Updated 9 years ago
- ARDvark parses the Apple Remote Desktop (ARD) files to pull out application usage, user activity, and filesystem listings.☆36Jun 1, 2023Updated 2 years ago
- NTFS file system specimens☆13Jul 3, 2023Updated 2 years ago
- Tools for macOS Forensic Bootable media☆15May 20, 2020Updated 5 years ago
- Malice Office/OLE/RTF Plugin☆13Aug 29, 2018Updated 7 years ago
- ☆12Dec 7, 2022Updated 3 years ago
- Registry to JSON. This Project is for learning purposes and is not maintained.☆12Dec 28, 2021Updated 4 years ago
- This is a framework written in EnScript to utilize the network capabilities of EnCase. The purpose is to allow for someone to build a qui…☆13Apr 22, 2015Updated 10 years ago
- LNK to JSON☆14Mar 7, 2019Updated 6 years ago
- ☆13Apr 6, 2016Updated 9 years ago
- Windows 10 Live Information viewer☆38Jan 27, 2022Updated 4 years ago
- Privescker - make life easier by dumping all your common Windows enum, privesc and post exploitation scripts and tools on to the box in o…☆45Apr 4, 2022Updated 3 years ago
- MiniDump a process in memory with rust☆37Jun 20, 2021Updated 4 years ago
- Triaging Windows event logs based on SANS Poster☆47Nov 22, 2025Updated 3 months ago
- Remotely collect linux live forensics artifacts.☆14Jul 8, 2022Updated 3 years ago
- Set up a quick and dirty audit log on an SQLite db.☆16May 16, 2013Updated 12 years ago
- extract and parse WEVT_TEMPLATEs from PE files☆18Dec 30, 2023Updated 2 years ago
- Jupyter Notebooks for Cyber Threat Intelligence☆35Sep 14, 2023Updated 2 years ago