Simple Microsoft Windows sessions event logs visualization
☆156May 2, 2022Updated 3 years ago
Alternatives and similar repositories for event2timeline
Users that are interested in event2timeline are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Registry to JSON. This Project is for learning purposes and is not maintained.☆12Dec 28, 2021Updated 4 years ago
- VMware Snapshot Forensic Comparison Scripts☆25Mar 19, 2013Updated 13 years ago
- Carve $MFT records from a chunk of data (for instance a memory dump)☆16Aug 21, 2016Updated 9 years ago
- Fast Incident Response☆2,003Apr 8, 2026Updated last week
- An informational repo about hunting for adversaries in your IT environment.☆14Apr 10, 2017Updated 9 years ago
- Managed Kubernetes at scale on DigitalOcean • AdDigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
- Server for receiving autorun data from the clients☆13Sep 26, 2017Updated 8 years ago
- Discover potential timestamps within the Windows Registry☆19Apr 22, 2014Updated 11 years ago
- An updated C# port of X-Ways X-Tensions API.☆11Mar 12, 2018Updated 8 years ago
- Some IR notes☆73Jul 23, 2016Updated 9 years ago
- Python script for extracting USB information from Windows registry hives☆129Aug 14, 2019Updated 6 years ago
- Unpack MIME attachments from a file and check them against virustotal.com☆44Mar 11, 2016Updated 10 years ago
- Various DFIR Tools☆27Jul 23, 2018Updated 7 years ago
- ☆520Jan 26, 2021Updated 5 years ago
- Outlook add-in companion to report suspicious mail easily☆133Sep 1, 2022Updated 3 years ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- Tools from WFA 4/e, timeline tools, etc.☆145Feb 29, 2024Updated 2 years ago
- ☆46Jun 1, 2023Updated 2 years ago
- Investigate suspicious activity by visualizing Sysmon's event log☆432Dec 22, 2023Updated 2 years ago
- Incident Response Methodologies☆1,019Aug 2, 2018Updated 7 years ago
- A Windows Event Processing Utility☆47Feb 21, 2018Updated 8 years ago
- ☆30Nov 15, 2018Updated 7 years ago
- Parse Windows Prefetch files: Supports XP - Windows 10 Prefetch files☆122May 29, 2024Updated last year
- A modern Python-3-based alternative to RegRipper☆213Mar 31, 2025Updated last year
- The Auditd Framework logs and applies security policy to linux auditd data☆15Jan 26, 2018Updated 8 years ago
- GPUs on demand by Runpod - Special Offer Available • AdRun AI, ML, and HPC workloads on powerful cloud GPUs—without limits or wasted spend. Deploy GPUs in under a minute and pay by the second.
- FAME Automates Malware Evaluation☆936Dec 16, 2025Updated 4 months ago
- Reconstruct process trees from event logs☆148Aug 12, 2020Updated 5 years ago
- Decode security descriptors in $Secure on NTFS☆22Feb 24, 2022Updated 4 years ago
- MacOS incident Response Toolkit. Mostly written while stuck on a NJTransit train.☆20Feb 20, 2020Updated 6 years ago
- Sources, configuration and how to detect evil things utilizing Microsoft Sysmon.☆940Dec 12, 2023Updated 2 years ago
- My Year of Python Repository☆28Jun 13, 2020Updated 5 years ago
- Wrapper for TSK (Sleuth Kit) Bindings☆12Jan 10, 2023Updated 3 years ago
- Swordphish Phishing Awareness Tool☆226Sep 22, 2024Updated last year
- EVTXtract recovers and reconstructs fragments of EVTX log files from raw binary data, including unallocated space and memory images.☆211Mar 12, 2025Updated last year
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- ☆50Aug 30, 2020Updated 5 years ago
- Recover event log entries from an image by heurisitically looking for record structures.☆26Oct 9, 2015Updated 10 years ago
- Maltego Transform to put entities into MISP events☆28Jul 24, 2021Updated 4 years ago
- ☆433May 3, 2023Updated 2 years ago
- Extract common Windows artifacts from source images and VSCs☆65May 10, 2021Updated 4 years ago
- An NTFS/FAT parser for digital forensics & incident response☆225Oct 31, 2025Updated 5 months ago
- LNK to JSON☆14Mar 7, 2019Updated 7 years ago