Parse and analyze a Windows Amcache.hve registry hive, VirusTotal integration.
☆112Aug 12, 2025Updated 9 months ago
Alternatives and similar repositories for amcache-evilhunter
Users that are interested in amcache-evilhunter are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- A high-speed forensic timeline engine for Windows forensic artifact CSV output built for DFIR investigators. Quickly consolidate CSV outp…☆325Feb 26, 2026Updated 2 months ago
- Manage and maintain Defender XDR custom collection configuration☆37Nov 19, 2025Updated 6 months ago
- A tool designed to extract data from a logical ReFS 3.4 forensic image produced by FTK Imager☆17Nov 22, 2023Updated 2 years ago
- ☆23Aug 16, 2025Updated 9 months ago
- ☆75Mar 19, 2025Updated last year
- End-to-end encrypted cloud storage - Proton Drive • AdSpecial offer: 40% Off Yearly / 80% Off First Month. Protect your most important files, photos, and documents from prying eyes.
- Obex – Blocking unwanted DLLs in user mode☆283Sep 18, 2025Updated 8 months ago
- ☆15Jun 5, 2024Updated last year
- H0tmCheck: email checking sin ruido, sin basura, solo resultados.☆18Dec 14, 2025Updated 5 months ago
- A simple python script to generate nested folders based on user input. The script will also name and place a template report document and…☆12May 6, 2026Updated 2 weeks ago
- Various PowerShells scripts I've made (or others have made) to automate some of the boring stuff in my everyday DFIR journey!☆53Jan 9, 2026Updated 4 months ago
- AppCompatCache (shimcache) parser. Supports Windows 7 (x86 and x64), Windows 8.x, and Windows 10, and Windows 11☆128May 3, 2026Updated 3 weeks ago
- Bash Script to extract GNU/Linux forensic artifacts for digital forensic analysis and incident response.☆43Jul 5, 2023Updated 2 years ago
- A password list optimized for use on Android devices.☆11Jul 2, 2022Updated 3 years ago
- 存放投稿里的一些文件☆11Oct 31, 2020Updated 5 years ago
- Virtual machines for every use case on DigitalOcean • AdGet dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
- Memory acquisition for Linux that makes sense.☆234Nov 21, 2023Updated 2 years ago
- Advanced analysis software for APK payloads created by RATs.☆53May 5, 2026Updated 2 weeks ago
- Aralez is a triage tool for Windows and Linux that automates the collection of system information, network/process data, and files.☆24May 5, 2026Updated 2 weeks ago
- ☆26Aug 15, 2022Updated 3 years ago
- 艦隊可以蒐藏/ASCII Art 也可以☆11Nov 24, 2016Updated 9 years ago
- Security tools, scanners, exploit code☆31Oct 21, 2017Updated 8 years ago
- Index all certificates from certificate transparancy into Elasticsearch☆22Nov 22, 2017Updated 8 years ago
- A Windows Event Log MCP☆46Aug 25, 2025Updated 8 months ago
- Analyzes AdminSDHolder permissions & compares with default baseline or a previous run, to detect potential backdoor/excessive persistent …☆16Apr 8, 2025Updated last year
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- ☆130Feb 19, 2026Updated 3 months ago
- The Sentinel.blog Repository provides automation tools for updating Analytics Rules, Content Hub Solutions, and Workbooks, eliminating re…☆22May 18, 2026Updated last week
- ☆19Apr 16, 2026Updated last month
- A repository to share publicly available Velociraptor detection content☆203Updated this week
- ☆50Apr 4, 2026Updated last month
- Scripts for rapid Windows endpoint "tactical triage" and investigations with Velociraptor and KAPE☆198Apr 1, 2026Updated last month
- Command line access to the Registry☆174May 4, 2026Updated 3 weeks ago
- A modular and beginner-friendly toolkit to set up your Termux environment with essential tools in one click.☆20Apr 20, 2025Updated last year
- Abusing Remote Windows SMB Shares for Fun and Pen Testing☆15May 23, 2023Updated 3 years ago
- Deploy open-source AI quickly and easily - Special Bonus Offer • AdRunpod Hub is built for open source. One-click deployment and autoscaling endpoints without provisioning your own infrastructure.
- Conditional Access baseline for March 2025☆12Mar 4, 2025Updated last year
- The purpose of this repository is to share KQL queries to help identify security misconfigurations, hunt for specific patterns, or detect…☆82Feb 10, 2026Updated 3 months ago
- An extendable tool to extract and aggregate IoCs from threat feeds☆33Feb 6, 2024Updated 2 years ago
- A web interface to manage and access Virtualbox machines.☆10Dec 26, 2022Updated 3 years ago
- Automation tool for Windows Deception Host Burn-In☆85Dec 4, 2024Updated last year
- Volatility 3 Plugins☆21Oct 3, 2022Updated 3 years ago
- This repo contains the results of an internal re-write of impacket I undertook at my current company. It contains some of the IoCs found …☆239May 18, 2026Updated last week