ethanbayne / OpenForensics

Related projects ⓘ

Alternatives and complementary repositories for OpenForensics

• EricZimmerman / MFT
  MFT parser
  ☆61Updated 7 months ago
• EricZimmerman / RegistryExplorerBookmarks
  Registry Explorer bookmark definitions
  ☆41Updated last year
• EricZimmerman / RegistryPlugins
  ☆60Updated last week
• EricZimmerman / RECmd
  Command line access to the Registry
  ☆130Updated last week
• nannib / Imm2Virtual
  This is a GUI (for Windows 64 bit) for a procedure to virtualize your EWF(E01), DD (raw), AFF disk image file without converting it, dire…
  ☆50Updated 5 years ago
• ArsenalRecon / BackstageParser
  Backstage Parser
  ☆32Updated 2 years ago
• EricZimmerman / bstrings
  A better strings utility!
  ☆120Updated last year
• EricZimmerman / TLEFilePlugins
  Plugins for parsing CSV files in Timeline Explorer. This project allows for anyone to add more supported files (i,e. they get a Line #/ta…
  ☆22Updated last week
• woanware / wmi-parser
  Parses the WMI object database....looking for persistence
  ☆31Updated 4 years ago
• EricZimmerman / SQLECmd
  ☆46Updated 2 weeks ago
• AndrewRathbun / VanillaWindowsRegistryHives
  A repo that contains a recursive dump from the ROOT key of every Windows Registry hive (using KAPE) from a vanilla (clean) install of eve…
  ☆43Updated last year
• bshavers / Mini-WinFE
  Winbuilder Mini-WinFE
  ☆16Updated last year
• EricZimmerman / ericzimmerman.github.io
  Software downloads
  ☆92Updated this week
• EricZimmerman / VSCMount
  Mount VSCs with ease!
  ☆14Updated last year
• kacos2000 / Win10LiveInfo
  Windows 10 Live Information viewer
  ☆33Updated 2 years ago
• sumeshi / ntfsfind
  An efficient tool for search files, directories, and alternate data streams directly from NTFS image files.
  ☆21Updated 8 months ago
• nesfit / NetfoxDetective
  Network Forensic Extendable Analysis Tool
  ☆38Updated 2 years ago
• ArsenalRecon / GmailURLDecoder
  Gmail URL Decoder is an Open Source Python tool that can be used against plaintext or arbitrary raw data files in order to find, extract,…
  ☆52Updated 4 years ago
• digitalsleuth / WIN-FOR
  Windows Forensics Environment Builder
  ☆110Updated last week
• abrignoni / WLEAPP
  WLEAPP is an open source project that aims to parse Windows OS artifacts for the purpose of triage analysis.
  ☆31Updated 11 months ago
• EricZimmerman / JLECmd
  Automatic and Custom Destinations jump list parser with Windows 10 support
  ☆74Updated last year
• EricZimmerman / ExtensionBlocks
  Extension blocks as found in ShellBags and other places in the Registry
  ☆23Updated 2 months ago
• AndrewRathbun / DirectoryOpus-DFIRConfig
  A config file that's curated for DFIR examiners with shortcuts to common Windows artifacts and settings enabled that help make your life …
  ☆30Updated last month
• zff-team / zff-rs
  Library to handle the files in zff format (file format to store and handle forensic acquisitions).
  ☆21Updated 2 weeks ago
• kacos2000 / Jumplist-Browser
  Automatic/Custom Destinations & LNK (MS-SHLLINK) Browser
  ☆30Updated 8 months ago
• digitalsleuth / forensics_tools
  Various short scripts and tools used for Digital Forensics
  ☆12Updated 6 months ago
• EricZimmerman / Get-ZimmermanTools
  Get all my software
  ☆141Updated 2 months ago
• AndrewRathbun / SigHunter
  A C# (.NET 6) tool to compare the file signature of files recursively and inform the user of matches and mismatches
  ☆15Updated last month
• EricZimmerman / iisGeolocate
  geolocate ip addresses in IIS logs
  ☆18Updated last year
• moaistory / IE10Analyzer
  http://moaistory.blogspot.com/2016/08/ie10analyzer.html
  ☆14Updated 3 months ago