Parse and analyze a Windows Amcache.hve registry hive, VirusTotal integration.
☆111Aug 12, 2025Updated 7 months ago
Alternatives and similar repositories for amcache-evilhunter
Users that are interested in amcache-evilhunter are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- A high-speed forensic timeline engine for Windows forensic artifact CSV output built for DFIR investigators. Quickly consolidate CSV outp…☆309Feb 26, 2026Updated 3 weeks ago
- Manage and maintain Defender XDR custom collection configuration☆34Nov 19, 2025Updated 4 months ago
- A tool designed to extract data from a logical ReFS 3.4 forensic image produced by FTK Imager☆16Nov 22, 2023Updated 2 years ago
- ☆22Aug 16, 2025Updated 7 months ago
- ☆75Mar 19, 2025Updated last year
- Bare Metal GPUs on DigitalOcean Gradient AI • AdPurpose-built for serious AI teams training foundational models, running large-scale inference, and pushing the boundaries of what's possible.
- Cumulonimbus-UAL_Extractor is a PowerShell based tool created by the Tesorion CERT team to help gather the Unified Audit Logging out of a…☆21Oct 25, 2023Updated 2 years ago
- acquire is a tool to quickly gather forensic artifacts from disk images or a live system into a lightweight container.☆118Mar 10, 2026Updated 2 weeks ago
- ☆15Jun 5, 2024Updated last year
- Various PowerShells scripts I've made (or others have made) to automate some of the boring stuff in my everyday DFIR journey!☆51Jan 9, 2026Updated 2 months ago
- A simple python script to generate nested folders based on user input. The script will also name and place a template report document and…☆11Jun 19, 2025Updated 9 months ago
- Bash Script to extract GNU/Linux forensic artifacts for digital forensic analysis and incident response.☆43Jul 5, 2023Updated 2 years ago
- AppCompatCache (shimcache) parser. Supports Windows 7 (x86 and x64), Windows 8.x, and Windows 10, and Windows 11☆129Jan 12, 2025Updated last year
- A password list optimized for use on Android devices.☆11Jul 2, 2022Updated 3 years ago
- RustHunter is a modular incident response framework based on Rust and Ansible to build and compare environmental baselines.☆18Nov 12, 2025Updated 4 months ago
- DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- Memory acquisition for Linux that makes sense.☆226Nov 21, 2023Updated 2 years ago
- suricata-check is a command line utility to provide feedback on Suricata rules. The tool can detect various issues including those coveri…☆20Nov 21, 2025Updated 4 months ago
- Aralez is a triage tool for Windows and Linux that automates the collection of system information, network/process data, and files.☆22Dec 11, 2025Updated 3 months ago
- Slides and videos from talks given at cons☆25Jun 19, 2025Updated 9 months ago
- WPF Control Explorer is a simple tool that allows you to explore the various built-in controls used in creating WPF desktop applications.☆10Jul 10, 2020Updated 5 years ago
- A Windows Event Log MCP☆42Aug 25, 2025Updated 7 months ago
- Index all certificates from certificate transparancy into Elasticsearch☆22Nov 22, 2017Updated 8 years ago
- ☆22Dec 22, 2020Updated 5 years ago
- Analyzes AdminSDHolder permissions & compares with default baseline or a previous run, to detect potential backdoor/excessive persistent …☆16Apr 8, 2025Updated 11 months ago
- Simple, predictable pricing with DigitalOcean hosting • AdAlways know what you'll pay with monthly caps and flat pricing. Enterprise-grade infrastructure trusted by 600k+ customers.
- The P4 version of the Zodiac FX firmware☆10Jul 25, 2019Updated 6 years ago
- Interview questions to screen offensive (red team/pentest) candidates☆12Apr 7, 2017Updated 8 years ago
- Azure AD (Entra ID) enumeration tool. Find related domains and tenant information in a simple way.☆35Oct 4, 2024Updated last year
- Lootbox downloads open directories shared on Twitter.☆35Mar 28, 2021Updated 4 years ago
- The Sentinel.blog Repository provides automation tools for updating Analytics Rules, Content Hub Solutions, and Workbooks, eliminating re…☆18Updated this week
- ☆130Feb 19, 2026Updated last month
- ☆17Jan 22, 2026Updated 2 months ago
- ☆48Mar 16, 2026Updated last week
- A repository to share publicly available Velociraptor detection content☆196Mar 15, 2026Updated last week
- Managed Kubernetes at scale on DigitalOcean • AdDigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
- Command line access to the Registry☆167Mar 18, 2026Updated last week
- Scripts for rapid Windows endpoint "tactical triage" and investigations with Velociraptor and KAPE☆180Jan 20, 2026Updated 2 months ago
- Conditional Access baseline for March 2025☆12Mar 4, 2025Updated last year
- Abusing Remote Windows SMB Shares for Fun and Pen Testing☆15May 23, 2023Updated 2 years ago
- A web interface to manage and access Virtualbox machines.☆10Dec 26, 2022Updated 3 years ago
- The purpose of this repository is to share KQL queries to help identify security misconfigurations, hunt for specific patterns, or detect…☆81Feb 10, 2026Updated last month
- An extendable tool to extract and aggregate IoCs from threat feeds☆33Feb 6, 2024Updated 2 years ago