Tool to parse SRU database
☆25Mar 1, 2018Updated 8 years ago
Alternatives and similar repositories for SrumMonkey
Users that are interested in SrumMonkey are comparing it to the libraries listed below
Sorting:
- A GC link parser for both linkfiles and jumplists.☆18Oct 28, 2016Updated 9 years ago
- A Windows Event Processing Utility☆47Feb 21, 2018Updated 8 years ago
- Registry Miner☆14Apr 10, 2018Updated 7 years ago
- Recover event log entries from an image by heurisitically looking for record structures.☆26Oct 9, 2015Updated 10 years ago
- Various DFIR Tools☆27Jul 23, 2018Updated 7 years ago
- Assorted classes and methods for indexing reports and retrieving information from an elastic index☆21Jul 5, 2016Updated 9 years ago
- Discover USB device history for a specific user☆23Dec 28, 2015Updated 10 years ago
- Carve NTFS USN records from binary data☆27May 21, 2017Updated 8 years ago
- Publicly shareable windows event log message data☆28Nov 29, 2019Updated 6 years ago
- Crack base64(sha256(username)) hash from Microsoft Event ID 1029☆24Aug 4, 2023Updated 2 years ago
- PowerShell Utilities for Security Situational Awareness☆13Jan 10, 2017Updated 9 years ago
- Visualization of interaction between entities☆16Nov 28, 2016Updated 9 years ago
- A Volatility plugin for finding sqlite database rows☆21Jul 14, 2019Updated 6 years ago
- Parse IE, FireFox, Chrome and Safari Cookies for Google Analytic values☆23Sep 3, 2016Updated 9 years ago
- An NTFS journal parser☆80Mar 3, 2016Updated 10 years ago
- An informational repo about hunting for adversaries in your IT environment.☆14Apr 10, 2017Updated 8 years ago
- Powerful commandline $MFT record editor.☆25Aug 15, 2015Updated 10 years ago
- Wrapper for TSK (Sleuth Kit) Bindings☆12Jan 10, 2023Updated 3 years ago
- A Backup for BMC Viewer☆33Nov 4, 2017Updated 8 years ago
- macOS triage is a python script to collect various macOS logs, artifacts, and other data.☆25Mar 25, 2021Updated 4 years ago
- Extract BITS jobs from QMGR queue and store them as CSV records☆74Feb 13, 2025Updated last year
- Some dfir stuff☆31Jan 12, 2022Updated 4 years ago
- not the worst forensics regexp—this is not the primary repo; caveat programmer☆30May 7, 2019Updated 6 years ago
- Git for me to put all my forensics stuff☆23Sep 2, 2025Updated 6 months ago
- Parse Manifest.mbdb files from iTunes backup directories☆20Jun 29, 2017Updated 8 years ago
- Decode security descriptors in $Secure on NTFS☆22Feb 24, 2022Updated 4 years ago
- Fast incident overview☆41Feb 11, 2017Updated 9 years ago
- Parses IE's Automatic Crash Recovery Files☆16Feb 3, 2017Updated 9 years ago
- Tool to extract the $UsnJrnl from an NTFS volume☆109Jul 30, 2019Updated 6 years ago
- Automated forensics written in PowerShell☆34Sep 29, 2019Updated 6 years ago
- extract and parse WEVT_TEMPLATEs from PE files☆18Dec 30, 2023Updated 2 years ago
- The Cold Disk Quick Response (CDQR) tool is a fast and easy to use forensic artifact parsing tool that works on disk images, mounted driv…☆343Jun 25, 2022Updated 3 years ago
- Page File analysis tools.☆131Dec 3, 2015Updated 10 years ago
- Registry to JSON. This Project is for learning purposes and is not maintained.☆12Dec 28, 2021Updated 4 years ago
- Scripts for MacOS related tasks.☆18Feb 16, 2020Updated 6 years ago
- Small scripts and POCs related to digital forensics☆18Nov 1, 2022Updated 3 years ago
- My Year of Python Repository☆28Jun 13, 2020Updated 5 years ago
- Evidence Fetcher (efetch) is a web-based file explorer, viewer, and analyzer.☆39Apr 11, 2020Updated 5 years ago
- Python script for extracting USB information from Windows registry hives☆128Aug 14, 2019Updated 6 years ago