Alternatives and similar repositories for OpenForensics

Users that are interested in OpenForensics are comparing it to the libraries listed below

• EricZimmerman / MFT
  MFT parser
  ☆72Updated 9 months ago
• EricZimmerman / iisGeolocate
  geolocate ip addresses in IIS logs
  ☆20Updated 10 months ago
• EricZimmerman / RegistryExplorerBookmarks
  Registry Explorer bookmark definitions
  ☆43Updated 11 months ago
• digitalsleuth / forensics_tools
  Various short scripts and tools used for Digital Forensics
  ☆14Updated 7 months ago
• nesfit / NetfoxDetective
  Network Forensic Extendable Analysis Tool
  ☆39Updated 3 years ago
• woanware / wmi-parser
  Parses the WMI object database....looking for persistence
  ☆34Updated 5 years ago
• kacos2000 / Win10LiveInfo
  Windows 10 Live Information viewer
  ☆37Updated 3 years ago
• EricZimmerman / RegistryPlugins
  ☆71Updated 3 months ago
• alpine-sec / SPECTR3
  Forensic tool for acquisition, triage and analysis of remote block devices via iSCSI protocol.
  ☆42Updated last year
• EricZimmerman / bstrings
  A better strings utility!
  ☆143Updated 3 months ago
• EricZimmerman / JLECmd
  Automatic and Custom Destinations jump list parser with Windows 10 support
  ☆110Updated 2 months ago
• EricZimmerman / Registry
  Full featured, offline Registry parser in C#
  ☆236Updated last month
• EricZimmerman / Lnk
  Lnk file parser
  ☆90Updated 5 months ago
• woanware / ForensicUserInfo
  Extracts Windows user info including the password hashes
  ☆40Updated 9 years ago
• EricZimmerman / TLEFilePlugins
  Plugins for parsing CSV files in Timeline Explorer. This project allows for anyone to add more supported files (i,e. they get a Line #/ta…
  ☆28Updated 6 months ago
• ArsenalRecon / BackstageParser
  Backstage Parser
  ☆33Updated 3 years ago
• pjrinaldi / wombatforensics
  linux c++, fox-toolkit, multi-threaded forensic gui tool
  ☆50Updated last year
• kacos2000 / Jumplist-Browser
  Automatic/Custom Destinations & LNK (MS-SHLLINK) Browser
  ☆39Updated last year
• ArsenalRecon / GmailURLDecoder
  Gmail URL Decoder is an Open Source Python tool that can be used against plaintext or arbitrary raw data files in order to find, extract,…
  ☆60Updated 6 years ago
• forensenellanebbia / xways-forensics
  Personal settings for X-Ways Forensics
  ☆32Updated 3 years ago
• EricZimmerman / USBDevices
  Get USB Devices from Registry hives
  ☆22Updated 4 years ago
• ignacioj / mftf
  $MFT parser (from live systems or a copy of the $MFT) and raw file copy utility
  ☆38Updated last year
• AndrewRathbun / SigHunter
  A C# (.NET 6) tool to compare the file signature of files recursively and inform the user of matches and mismatches
  ☆15Updated 11 months ago
• appliedsec / forensicscanner
  Forensic Scanner
  ☆41Updated 12 years ago
• EricZimmerman / OleCf
  Library to process OLE compound file format. This is a work in progress and was initially written for jumplist parsing (for which it does…
  ☆19Updated 9 months ago
• nannib / Imm2Virtual
  This is a GUI (for Windows 64 bit) for a procedure to virtualize your EWF(E01), DD (raw), AFF disk image file without converting it, dire…
  ☆55Updated 6 years ago
• log2timeline / dfwinreg
  Digital Forensics Windows Registry (dfWinReg)
  ☆52Updated last week
• jschicht / Secure2Csv
  Decode security descriptors in $Secure on NTFS
  ☆21Updated 3 years ago
• Digital-Forensics-Discord-Server / GitHubLearningPlayground
  Fork this repo! Do a Pull Request! As many times as you want! Learn the ins and outs of how to contribute to GitHub! Make your mistakes h…
  ☆13Updated last year
• EricZimmerman / GuidMapping
  ☆21Updated 10 months ago