ernw/quarantine-formats external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

ernw/quarantine-formats

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/ernw/quarantine-formats)

Close

ernw / quarantine-formatsView on GitHubMore

• External links
• Readme badge

Documentation and parsers for different anti-virus quarantine formats.

☆43Dec 9, 2020Updated 5 years ago

Alternatives and similar repositories for quarantine-formats

Users that are interested in quarantine-formats are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• NUKIB / maldump

  View on GitHub
  Multi-quarantine extractor
  ☆56Mar 3, 2026Updated 2 months ago
• jklepsercyber / defender-detectionhistory-parser

  View on GitHub
  A parser of Windows Defender's DetectionHistory forensic artifact, containing substantial info about quarantined files and executables.
  ☆118Jan 26, 2022Updated 4 years ago
• 00010111 / gMetaDataParse

  View on GitHub
  ☆23Mar 12, 2025Updated last year
• wightsci / MessageTableReader

  View on GitHub
  Read Windows message table entries.
  ☆11Feb 5, 2023Updated 3 years ago
• matterpreter / FindETWProviderImage

  View on GitHub
  Quickly search for references to a GUID in DLLs, EXEs, and drivers
  ☆75Dec 10, 2021Updated 4 years ago
• AI Agents on DigitalOcean Gradient AI Platform • Ad
  Build production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
• tedhardyMSFT / EventLogUtilities

  View on GitHub
  Set of utilities for getting information about Windows Events
  ☆15Jun 5, 2018Updated 7 years ago
• woanware / etw-event-dumper

  View on GitHub
  ☆33Feb 26, 2022Updated 4 years ago
• sandflysecurity / sandfly-file-decloak

  View on GitHub
  Decloak Linux stealth rootkits hiding data with this simple memory mapped IO investigation tool.
  ☆29Sep 29, 2025Updated 7 months ago
• theevilbit / vaccination

  View on GitHub
  ☆10Oct 22, 2017Updated 8 years ago
• ANSSI-FR / bits_parser

  View on GitHub
  Extract BITS jobs from QMGR queue and store them as CSV records
  ☆74Feb 13, 2025Updated last year
• NexusFuzzy / Edison

  View on GitHub
  Tool to decrypt encrypted strings in AgentTesla
  ☆16Jan 24, 2022Updated 4 years ago
• AndrewRathbun / DFIRMindMaps

  View on GitHub
  A repository of DFIR-related Mind Maps geared towards the visual learners!
  ☆549Sep 2, 2022Updated 3 years ago
• crypto-cypher / CERT-Alerts

  View on GitHub
  A curated compilation of national CERT alerts & advisories sources (for cybersecurity).
  ☆13Sep 6, 2019Updated 6 years ago
• AbdulRhmanAlfaifi / CryptnetURLCacheParser

  View on GitHub
  CryptnetURLCacheParser is a tool to parse CryptAPI cache files
  ☆21Aug 3, 2024Updated last year
• Deploy on Railway without the complexity - Free Credits Offer • Ad
  Connect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
• DFRWS-memory-subversion / DFRWS-USA-2020

  View on GitHub
  ☆12Feb 8, 2021Updated 5 years ago
• mtth-bfft / winsddl

  View on GitHub
  Windows Security Descriptor Definition Language (SDDL) parser and formatter
  ☆20Jun 8, 2020Updated 5 years ago
• digitalsleuth / time_decode

  View on GitHub
  A timestamp and date decoder written for python 3
  ☆42Mar 9, 2026Updated 2 months ago
• cclgroupltd / chrome-profile-view

  View on GitHub
  Python web app for previewing data in a Chrome Profile Folder
  ☆26Jul 1, 2024Updated last year
• batteryshark / stfu_wow64

  View on GitHub
  A Generic WOW64 Process Blocker
  ☆12Jul 16, 2021Updated 4 years ago
• aaaddress1 / dnLauncher

  View on GitHub
  ☆37Dec 27, 2021Updated 4 years ago
• net-protect / google-fs-recover

  View on GitHub
  Google Filestream Forensic Tool
  ☆22Mar 10, 2022Updated 4 years ago
• EspressoCake / Needle_Sift_BOF

  View on GitHub
  Strstr with user-supplied needle and filename as a BOF.
  ☆32Sep 27, 2021Updated 4 years ago
• binref / refinery

  View on GitHub
  High Octane Triage Analysis
  ☆843May 20, 2026Updated last week
• Deploy on Railway without the complexity - Free Credits Offer • Ad
  Connect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
• kacos2000 / WinEDB

  View on GitHub
  Windows.EDB Browser
  ☆62Mar 6, 2023Updated 3 years ago
• 0xThiebaut / PCAPeek

  View on GitHub
  A proof-of-concept re-assembler for reverse VNC traffic.
  ☆24May 21, 2023Updated 3 years ago
• davidprefer / Brugglemark

  View on GitHub
  PowerShell script that abuses browser bookmark synchronization as a mechanism for sending and receiving data between systems.
  ☆16Jul 26, 2022Updated 3 years ago
• DissectMalware / MDIExtractor

  View on GitHub
  ☆15Nov 25, 2021Updated 4 years ago
• ArsenalRecon / SdbaParser

  View on GitHub
  Parser for Sdba memory pool tags
  ☆21Jul 16, 2021Updated 4 years ago
• BinaryDefense / beacon-fronting

  View on GitHub
  A simple command line program to help defender test their detections for network beacon patterns and domain fronting
  ☆69Feb 3, 2022Updated 4 years ago
• CrowdStrike / SuperMem

  View on GitHub
  A python script developed to process Windows memory images based on triage type.
  ☆266Nov 25, 2023Updated 2 years ago
• vadim-hunter / Detection-Ideas-Rules

  View on GitHub
  Detection Ideas & Rules repository.
  ☆178Sep 10, 2021Updated 4 years ago
• stairwell-inc / cobalt-strike-stager-parser

  View on GitHub
  ☆36Jan 11, 2023Updated 3 years ago
• Wordpress hosting with auto-scaling - Free Trial Offer • Ad
  Fully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
• malwageddon / iris-h

  View on GitHub
  Placeholder for IRIS-H Digital Forensics Tool
  ☆15May 30, 2018Updated 7 years ago
• nccgroup / WindowsMemPageDelta

  View on GitHub
  A Microsoft Windows service to provide telemetry on Windows executable memory page changes to facilitate threat detection
  ☆32Oct 7, 2020Updated 5 years ago
• NorthwaveSecurity / kernel-mii

  View on GitHub
  Cobalt Strike (CS) Beacon Object File (BOF) foundation for kernel exploitation using CVE-2021-21551.
  ☆30Jun 7, 2023Updated 2 years ago
• nasbench / EVTX-ETW-Resources

  View on GitHub
  Event Tracing For Windows (ETW) Resources
  ☆428Oct 30, 2025Updated 6 months ago
• cbcommunity / cbapi-examples

  View on GitHub
  Repository for all cbapi example scripts
  ☆16Sep 18, 2018Updated 7 years ago
• keydet89 / Events-Ripper

  View on GitHub
  Project based on RegRipper, to extract add'l value/pivot points from TLN events file
  ☆90Feb 9, 2025Updated last year
• xorhex / mlget

  View on GitHub
  A golang CLI tool to download malware from a variety of sources.
  ☆150Jul 3, 2025Updated 10 months ago