Simple Microsoft Windows sessions event logs visualization
☆154May 2, 2022Updated 4 years ago
Alternatives and similar repositories for event2timeline
Users that are interested in event2timeline are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Registry to JSON. This Project is for learning purposes and is not maintained.☆12Dec 28, 2021Updated 4 years ago
- VMware Snapshot Forensic Comparison Scripts☆25Mar 19, 2013Updated 13 years ago
- Carve $MFT records from a chunk of data (for instance a memory dump)☆16Aug 21, 2016Updated 9 years ago
- Fast Incident Response☆2,007Apr 30, 2026Updated last week
- An informational repo about hunting for adversaries in your IT environment.☆14Apr 10, 2017Updated 9 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- Server for receiving autorun data from the clients☆13Sep 26, 2017Updated 8 years ago
- Discover potential timestamps within the Windows Registry☆19Apr 22, 2014Updated 12 years ago
- An updated C# port of X-Ways X-Tensions API.☆11Mar 12, 2018Updated 8 years ago
- Some IR notes☆73Jul 23, 2016Updated 9 years ago
- Python script for extracting USB information from Windows registry hives☆130Aug 14, 2019Updated 6 years ago
- Unpack MIME attachments from a file and check them against virustotal.com☆44Mar 11, 2016Updated 10 years ago
- Various DFIR Tools☆27Jul 23, 2018Updated 7 years ago
- ☆520Jan 26, 2021Updated 5 years ago
- Outlook add-in companion to report suspicious mail easily☆132Sep 1, 2022Updated 3 years ago
- End-to-end encrypted cloud storage - Proton Drive • AdSpecial offer: 40% Off Yearly / 80% Off First Month. Protect your most important files, photos, and documents from prying eyes.
- Tools from WFA 4/e, timeline tools, etc.☆145Feb 29, 2024Updated 2 years ago
- ☆46Jun 1, 2023Updated 2 years ago
- Investigate suspicious activity by visualizing Sysmon's event log☆431Dec 22, 2023Updated 2 years ago
- Incident Response Methodologies☆1,016Aug 2, 2018Updated 7 years ago
- A Windows Event Processing Utility☆47Feb 21, 2018Updated 8 years ago
- ☆30Nov 15, 2018Updated 7 years ago
- Parse Windows Prefetch files: Supports XP - Windows 10 Prefetch files☆122May 29, 2024Updated last year
- A modern Python-3-based alternative to RegRipper☆213Mar 31, 2025Updated last year
- The Auditd Framework logs and applies security policy to linux auditd data☆15Jan 26, 2018Updated 8 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- FAME Automates Malware Evaluation☆937Updated this week
- Reconstruct process trees from event logs☆148Aug 12, 2020Updated 5 years ago
- Decode security descriptors in $Secure on NTFS☆22Feb 24, 2022Updated 4 years ago
- MacOS incident Response Toolkit. Mostly written while stuck on a NJTransit train.☆20Feb 20, 2020Updated 6 years ago
- Sources, configuration and how to detect evil things utilizing Microsoft Sysmon.☆939Dec 12, 2023Updated 2 years ago
- My Year of Python Repository☆28Jun 13, 2020Updated 5 years ago
- Wrapper for TSK (Sleuth Kit) Bindings☆12Jan 10, 2023Updated 3 years ago
- Swordphish Phishing Awareness Tool☆226Sep 22, 2024Updated last year
- EVTXtract recovers and reconstructs fragments of EVTX log files from raw binary data, including unallocated space and memory images.☆211Mar 12, 2025Updated last year
- Proton VPN Special Offer - Get 70% off • AdSpecial partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
- ☆50Aug 30, 2020Updated 5 years ago
- Recover event log entries from an image by heurisitically looking for record structures.☆26Oct 9, 2015Updated 10 years ago
- Maltego Transform to put entities into MISP events☆28Jul 24, 2021Updated 4 years ago
- ☆433May 3, 2023Updated 3 years ago
- Extract common Windows artifacts from source images and VSCs☆65May 10, 2021Updated 4 years ago
- An NTFS/FAT parser for digital forensics & incident response☆230Oct 31, 2025Updated 6 months ago
- LNK to JSON☆14Mar 7, 2019Updated 7 years ago