Alternatives and similar repositories for regdump

Users that are interested in regdump are comparing it to the libraries listed below

• OSRDrivers / tunnel
  Demonstrate the behavior of the tunnel cache on Windows
  ☆10Updated 6 years ago
• Fleex255 / CustomShim
  Example/starter code for custom Windows application compatibility shims
  ☆36Updated 5 years ago
• OSWatcher / windows-desktop
  History and analysis of Windows desktop images
  ☆20Updated 4 years ago
• zodiacon / BITSManager
  BITS Transfers Manager
  ☆45Updated 8 months ago
• packing-box / bintropy
  Analysis tool for estimating the likelihood that a binary contains compressed or encrypted bytes
  ☆46Updated last year
• secana / CertDump
  Dump certificates from PE files in different formats
  ☆38Updated 2 years ago
• repnz / autoit-analysis
  AutoIt Analysis Library: Parser & Emulator For Malware Researchers
  ☆21Updated 6 years ago
• reverseame / windows-memory-extractor
  Tool to extract contents from the memory of Windows systems.
  ☆13Updated 2 years ago
• dennisbabkin / SigRemover
  Utility to remove digital code signature from binary PE files in Windows.
  ☆17Updated 4 years ago
• Harvester57 / CodeIntegrity-DriverBlocklist
  ☆20Updated 7 months ago
• dz333n / pelauncher
  Portable Executable launcher for Windows NT bypassing loader
  ☆72Updated 4 months ago
• nccgroup / grepify
  Grepify the GUI Regex Text Scanner for Code Reviewers
  ☆23Updated 12 years ago
• EricZimmerman / OleCf
  Library to process OLE compound file format. This is a work in progress and was initially written for jumplist parsing (for which it does…
  ☆19Updated 11 months ago
• DissectMalware / xlrd2
  xlrd2 is a variant of xlrd that is actively maintained
  ☆23Updated last year
• SanseoLab / ejUnpacker
  x64dbg scripts for finding OEP of packers
  ☆15Updated 7 years ago
• kacos2000 / Jumplist-Browser
  Automatic/Custom Destinations & LNK (MS-SHLLINK) Browser
  ☆41Updated last year
• zodiacon / TaskSched
  ☆29Updated 3 years ago
• horsicq / YARA-sort
  Yara sort
  ☆13Updated this week
• Dump-GUY / Invoke-DetectItEasy
  Invoke-DetectItEasy is a wrapper for excelent tool called Detect-It-Easy. This PS module is very useful for Threat Hunting and Forensics.
  ☆30Updated 3 years ago
• microsoft / SysmonCommon
  The common parts of the Sysinternals Sysmon tool shared between the Windows and Linux versions.
  ☆65Updated last year
• sumeshi / ntfsfind
  An efficient tool for search files, directories, and alternate data streams directly from NTFS image files.
  ☆28Updated last year
• killswitch-GUI / IsDebuggerPresent
  Debugger checks in 3 ways
  ☆19Updated 7 years ago
• zodiacon / DeviceExplorer
  ☆58Updated last month
• PELock / StringEncrypt-WebAPI
  String Encryption and File Encryption for C/C++, C#, Visual Basic .NET, Delphi/Pascal/Object Pascal, Java, JavaScript, Python, Ruby, Auto…
  ☆28Updated 6 years ago
• zodiacon / InfStudio
  INF Studio for easier working with driver installation files
  ☆39Updated 2 years ago
• PELock / starter
  A small utility to run raw code chunks in the executable memory area.
  ☆16Updated 10 years ago
• diversenok / TransactionMaster
  A tool for Windows that can make any program work within file-system transactions.
  ☆59Updated 5 years ago
• Dump-GUY / Python3---Binary-Data-Manipulation
  Python 3 - Manipulation and conversation with different data type (Bytes operations)
  ☆27Updated 3 years ago
• AndrewRathbun / VanillaWindowsRegistryHives
  A repo that contains a recursive dump from the ROOT key of every Windows Registry hive (using KAPE) from a vanilla (clean) install of eve…
  ☆51Updated 2 months ago
• own2pwn / r0ak
  r0ak ("roak") is the Ring 0 Army Knife -- A Command Line Utility To Read/Write/Execute Ring Zero on for Windows 10 Systems
  ☆28Updated 7 years ago