Tool for analysis of Windows Prefetch files
☆26Nov 11, 2018Updated 7 years ago
Alternatives and similar repositories for analyzePF
Users that are interested in analyzePF are comparing it to the libraries listed below
Sorting:
- An efficient tool for extracting files, directories, and alternate data streams directly from NTFS image files.☆22Mar 12, 2026Updated last week
- Wrapper for TSK (Sleuth Kit) Bindings☆12Jan 10, 2023Updated 3 years ago
- An efficient tool for search files, directories, and alternate data streams directly from NTFS image files.☆28Mar 12, 2026Updated last week
- adversarial machine learning for anti-malware software☆12May 17, 2018Updated 7 years ago
- ☆18Jun 21, 2019Updated 6 years ago
- Visualization of interaction between entities☆16Nov 28, 2016Updated 9 years ago
- Telnet implementation for node.js, based on node-telnet☆18Sep 3, 2015Updated 10 years ago
- macOS triage is a python script to collect various macOS logs, artifacts, and other data.☆25Mar 25, 2021Updated 4 years ago
- A library for fast parse & import of Windows Master File Table($MFT) into Elasticsearch.☆12Jun 23, 2025Updated 9 months ago
- YARA package for Sublime Text☆19Nov 30, 2025Updated 3 months ago
- Process Filter for Python☆16Jan 19, 2016Updated 10 years ago
- Handy WMI query tool.☆12Jun 20, 2016Updated 9 years ago
- Backstage Parser☆33Jun 23, 2022Updated 3 years ago
- Network Defender Toolkit☆18Jun 11, 2013Updated 12 years ago
- Easy to use Frida python binding script☆120Apr 30, 2018Updated 7 years ago
- Files required to create a plugin for EmEditor.☆12Feb 5, 2026Updated last month
- Python script to parse the NTFS USN Journal☆116Jul 15, 2022Updated 3 years ago
- An informational repo about hunting for adversaries in your IT environment.☆14Apr 10, 2017Updated 8 years ago
- Automating forensic data extraction, reduction, and overall triage of cold disk and memory images.☆21Mar 12, 2019Updated 7 years ago
- A REST API server for yara event notifications. Mapping file hashes to yara signatures in Elasticsearch for easy hash lookup or finding h…☆19May 12, 2015Updated 10 years ago
- Yet another registry parser☆137Apr 15, 2022Updated 3 years ago
- A PoC demonstrating techniques exploiting CVE-2016-5696 Off-Path TCP Exploits: Global Rate Limit Considered Dangerous☆40Aug 23, 2016Updated 9 years ago
- Lightweight Microsoft OLE file parser in pure Python☆20Oct 17, 2019Updated 6 years ago
- extract and parse WEVT_TEMPLATEs from PE files☆18Dec 30, 2023Updated 2 years ago
- Open-CTF based on Christmas CTF Platform☆11Feb 25, 2016Updated 10 years ago
- A rewrite of mactime, a bodyfile reader☆40Aug 5, 2024Updated last year
- Vagrant configuration to setup a Thug honeyclient VM☆20Feb 26, 2015Updated 11 years ago
- malware-traffic-analysis.net PCAPs repository.☆37Jun 9, 2016Updated 9 years ago
- ☆20Jun 2, 2016Updated 9 years ago
- yara rules for cryptography detection☆31Apr 28, 2014Updated 11 years ago
- A developer-friendly framework for exhaustive analysis of (PCAP and PE) files.☆15Nov 6, 2017Updated 8 years ago
- Validates yara rules and tries to repair the broken ones.☆41Sep 5, 2020Updated 5 years ago
- http://moaistory.blogspot.com/2016/08/ie10analyzer.html☆19Jul 20, 2024Updated last year
- SUB/PUSH/POP based ASCII shellcode encoder☆23Sep 7, 2017Updated 8 years ago
- MFT parser☆74Feb 2, 2025Updated last year
- Elasticsearch/Kibana environment and log data for Sigma workshop☆26Dec 20, 2019Updated 6 years ago
- Proof of Concept example of Android Malware used for Research Purposes☆23Dec 22, 2016Updated 9 years ago
- Yara rules☆10Dec 10, 2019Updated 6 years ago
- You're busted!☆28Dec 16, 2019Updated 6 years ago