Alternatives and similar repositories for amcache-evilhunter

Users that are interested in amcache-evilhunter are comparing it to the libraries listed below

• Whee30 / Case-Management-script

  View on GitHub
  A simple python script to generate nested folders based on user input. The script will also name and place a template report document and…
  ☆11Jun 19, 2025Updated 7 months ago
• FullTang / AndroidPWList

  View on GitHub
  A password list optimized for use on Android devices.
  ☆11Jul 2, 2022Updated 3 years ago
• SygniaLabs / Mirage

  View on GitHub
  ☆75Mar 19, 2025Updated 10 months ago
• Permiso-io-tools / DetentionDodger

  View on GitHub
  ☆18Jan 31, 2025Updated last year
• fedoraredteam / cyber-test-lab

  View on GitHub
  Fedora Cyber Test Lab offers quantitative static and dynamic risk analysis of binaries
  ☆13Feb 11, 2018Updated 8 years ago
• Forensics-Lab / ReadFS

  View on GitHub
  A tool designed to extract data from a logical ReFS 3.4 forensic image produced by FTK Imager
  ☆16Nov 22, 2023Updated 2 years ago
• acquiredsecurity / forensic-timeliner

  View on GitHub
  A high-speed forensic timeline engine for Windows forensic artifact CSV output built for DFIR investigators. Quickly consolidate CSV outp…
  ☆304Nov 6, 2025Updated 3 months ago
• SentineLabs / log4j_response

  View on GitHub
  ☆15Dec 22, 2021Updated 4 years ago
• dutchcoders / lootbox

  View on GitHub
  Lootbox downloads open directories shared on Twitter.
  ☆35Mar 28, 2021Updated 4 years ago
• FalconForceTeam / TelemetryCollectionManager

  View on GitHub
  Manage and maintain Defender XDR custom collection configuration
  ☆33Nov 19, 2025Updated 2 months ago
• solardiz / wordlists

  View on GitHub
  Project Gutenberg Australia word lists
  ☆15Dec 30, 2021Updated 4 years ago
• dutchcoders / homographs

  View on GitHub
  Homographs: brutefind homographs within a font
  ☆19Apr 21, 2017Updated 8 years ago
• fox-it / acquire

  View on GitHub
  acquire is a tool to quickly gather forensic artifacts from disk images or a live system into a lightweight container.
  ☆117Updated this week
• xme / SANS-ISC

  View on GitHub
  Data related to the SANS Internet Storm Center
  ☆13Sep 12, 2025Updated 5 months ago
• h1kari / chapcrack

  View on GitHub
  ☆16Sep 26, 2016Updated 9 years ago
• google / hashr

  View on GitHub
  ☆128May 5, 2025Updated 9 months ago
• rohitcoder / SubR3con

  View on GitHub
  SubR3con is a script written in python. It uses Sublist3r to enumerate all subdomains of a specific target and then it checks for status …
  ☆18Jul 23, 2019Updated 6 years ago
• mchaffe / cloudprefixes

  View on GitHub
  Recon tool to query cloud prefixes for services associated with an IP address
  ☆23Oct 2, 2024Updated last year
• EricZimmerman / AppCompatCacheParser

  View on GitHub
  AppCompatCache (shimcache) parser. Supports Windows 7 (x86 and x64), Windows 8.x, and Windows 10, and Windows 11
  ☆129Jan 12, 2025Updated last year
• Immersive-Labs-Sec / volatility_plugins

  View on GitHub
  Volatility 3 Plugins
  ☆21Oct 3, 2022Updated 3 years ago
• tesorion / TCERT-Cumulonimbus-UAL_Extractor

  View on GitHub
  Cumulonimbus-UAL_Extractor is a PowerShell based tool created by the Tesorion CERT team to help gather the Unified Audit Logging out of a…
  ☆21Oct 25, 2023Updated 2 years ago
• outflanknl / Exploits

  View on GitHub
  Exploits developped by Outflank B.V. team members
  ☆21Jan 26, 2017Updated 9 years ago
• 2igosha / sunburst_dga

  View on GitHub
  ☆22Dec 22, 2020Updated 5 years ago
• Corissalea / KQL-and-Workbooks

  View on GitHub
  Sharing presentation slides and workbook templates that can be useful to others to learn more about Azure Active Directory!
  ☆21Aug 23, 2024Updated last year
• stark4n6 / Arc2Lite

  View on GitHub
  A simple script to read the contents of a zip/tar/folder and extract metadata
  ☆21Oct 6, 2025Updated 4 months ago
• c-skills / passport

  View on GitHub
  ☆23Sep 12, 2024Updated last year
• kgretzky / talks

  View on GitHub
  Slides and videos from talks given at cons
  ☆25Jun 19, 2025Updated 7 months ago
• FoxIO-LLC / ja4tscan

  View on GitHub
  JA4TScan is an active TCP server fingerprinting tool.
  ☆105Aug 29, 2024Updated last year
• secure-cake / rapid-endpoint-investigations

  View on GitHub
  Scripts for rapid Windows endpoint "tactical triage" and investigations with Velociraptor and KAPE
  ☆179Jan 20, 2026Updated 3 weeks ago
• MagnetForensics / dumpit-linux

  View on GitHub
  Memory acquisition for Linux that makes sense.
  ☆219Nov 21, 2023Updated 2 years ago
• theflakes / reg_hunter

  View on GitHub
  Blueteam operational triage registry hunting/forensic tool.
  ☆149Sep 2, 2025Updated 5 months ago
• dutchcoders / ct

  View on GitHub
  Index all certificates from certificate transparancy into Elasticsearch
  ☆22Nov 22, 2017Updated 8 years ago
• EricZimmerman / RECmd

  View on GitHub
  Command line access to the Registry
  ☆167Feb 5, 2026Updated last week
• redtimmy / OAMBuster

  View on GitHub
  Multithreaded Padding Oracle Attack on Oracle OAM (CVE-2018-2879)
  ☆25Aug 6, 2019Updated 6 years ago
• malvuln / viruscreds

  View on GitHub
  Database of backdoor passwords used by Malware, uncovered by the Malvuln project.
  ☆25Jan 19, 2026Updated 3 weeks ago
• mandiant / thiri-notebook

  View on GitHub
  The Threat Hunting In Rapid Iterations (THIRI) Jupyter notebook is designed as a research aide to let you rapidly prototype threat huntin…
  ☆154Apr 25, 2022Updated 3 years ago
• Neo23x0 / Loki-RS

  View on GitHub
  🐍 High-performance, multi-threaded YARA & IOC scanner
  ☆262Updated this week
• cisagov / scanner

  View on GitHub
  Automated pshtt, trustymail, and sslyze scanning
  ☆28Updated this week
• Hexastrike / EventWhisper

  View on GitHub
  A Windows Event Log MCP
  ☆40Aug 25, 2025Updated 5 months ago