Alternatives and similar repositories for dfxml_python

Users that are interested in dfxml_python are comparing it to the libraries listed below

• zerber0s / mac_int
  macOS Artifact Intelligence Tool
  ☆13Updated 6 years ago
• cocaman / analysis_scripts
  Collection of scripts used to analyse malware or emails
  ☆19Updated 4 years ago
• stairwell-inc / threat-research
  Repository of tools, YARA rules, and code-snippets from Stairwell's research team.
  ☆22Updated last year
• AndrewRathbun / Anti-Forensics-VHDX
  A sample VHDX file with multiple verbose examples of forensic and anti-forensics artifacts. Meant to be basic and can be expanded upon. P…
  ☆26Updated 2 years ago
• cyberg3cko / elrond
  Accelerating the collection, processing, analysis and outputting of digital forensic artefacts.
  ☆31Updated 3 months ago
• nccgroup / MetadataPlus
  A tool to use novel locations to extract metadata from Office documents.
  ☆62Updated last year
• 3c7 / common-osint-model
  Converting data from services like Censys and Shodan to a common data model
  ☆49Updated 8 months ago
• abrignoni / WLEAPP
  WLEAPP is an open source project that aims to parse Windows OS artifacts for the purpose of triage analysis.
  ☆30Updated last year
• forensicmatt / PancakeViewer
  A DFVFS Backed Forensic Viewer
  ☆40Updated 5 years ago
• adulau / hashlookup-server
  Fast lookup server for NSRL and other hash database used in digital forensic
  ☆45Updated 2 years ago
• 100DaysofYARA / 2022
  ☆22Updated 2 years ago
• ydkhatri / Appx-Analysis
  Scripts and tools created for appx analysis talk (Magnet summit 2019)
  ☆16Updated last year
• rkovar / ransomwarelegality
  Can you pay the ransom in your country?
  ☆14Updated last year
• 00010111 / gMetaDataParse
  ☆20Updated 2 months ago
• dfirlabs / ntfs-specimens
  NTFS file system specimens
  ☆13Updated last year
• 4n6ist / bulk_extractor-rec
  It is based on bulk_extractor (https://github.com/simsong/bulk_extractor) and add scanners for record carving
  ☆39Updated 5 years ago
• op7ic / unix_collector
  unix_collector is a Live Response collection script for Incident Response on UNIX-like systems using native binaries. Supports AIX, Andro…
  ☆35Updated 4 months ago
• CyCat-project / cycat-taxonomy
  CyCAT.org taxonomies
  ☆15Updated 3 years ago
• cudeso / CSIRT-Jump-Bag
  CSIRT Jump Bag
  ☆26Updated last year
• open-source-dfir / slack
  Information about the open-source-dfir slack community
  ☆29Updated last year
• ydkhatri / jarp
  Just Another broken Registry Parser (JARP)
  ☆16Updated 11 months ago
• alwashmi / MasterParser
  MasterParser is a simple, all-in-one, digital forensics artifact parser
  ☆22Updated 3 years ago
• AbdulRhmanAlfaifi / CryptnetURLCacheParser
  CryptnetURLCacheParser is a tool to parse CryptAPI cache files
  ☆16Updated 9 months ago
• myrtus0x0 / SMAT
  Standardized Malware Analysis Tool
  ☆52Updated 4 years ago
• tap-ir / tapir
  TAPIR is a multi-user, client/server, incident response framework
  ☆44Updated 2 years ago
• randomaccess3 / block-parser
  Parser for Windows PowerShell script block logs
  ☆13Updated 4 months ago
• simonrdavies / NapierOne
  NapierOne. A Publicly Available Modern Mixed File Data Set. The data set is suitable for a variety of testing scenarios such as Ransomwar…
  ☆19Updated 3 years ago
• hm-seclab / YAFRA
  YAFRA is a semi-automated framework for analyzing and representing reports about IT Security incidents.
  ☆27Updated 3 years ago
• Silv3rHorn / autoripy
  Attempt to replicate the functions of auto_rip by Corey Harrell in Python.
  ☆13Updated 9 months ago
• aff4 / Standard
  AFF4 Standard Documents
  ☆28Updated 3 years ago