Alternatives and similar repositories for OpenForensics

Users that are interested in OpenForensics are comparing it to the libraries listed below

• EricZimmerman / MFT
  MFT parser
  ☆74Updated 11 months ago
• EricZimmerman / RegistryExplorerBookmarks
  Registry Explorer bookmark definitions
  ☆44Updated last year
• EricZimmerman / RegistryPlugins
  ☆74Updated 2 weeks ago
• EricZimmerman / bstrings
  A better strings utility!
  ☆146Updated 5 months ago
• EricZimmerman / JLECmd
  Automatic and Custom Destinations jump list parser with Windows 10 support
  ☆113Updated 4 months ago
• alpine-sec / SPECTR3
  Forensic tool for acquisition, triage and analysis of remote block devices via iSCSI protocol.
  ☆43Updated last year
• EricZimmerman / RECmd
  Command line access to the Registry
  ☆164Updated 3 weeks ago
• EricZimmerman / Lnk
  Lnk file parser
  ☆90Updated 8 months ago
• woanware / wmi-parser
  Parses the WMI object database....looking for persistence
  ☆34Updated 6 years ago
• nesfit / NetfoxDetective
  Network Forensic Extendable Analysis Tool
  ☆39Updated 3 years ago
• EricZimmerman / iisGeolocate
  geolocate ip addresses in IIS logs
  ☆20Updated last year
• sumeshi / ntfsfind
  An efficient tool for search files, directories, and alternate data streams directly from NTFS image files.
  ☆28Updated last year
• EricZimmerman / Registry
  Full featured, offline Registry parser in C#
  ☆244Updated 3 months ago
• EricZimmerman / OleCf
  Library to process OLE compound file format. This is a work in progress and was initially written for jumplist parsing (for which it does…
  ☆19Updated 11 months ago
• EricZimmerman / ExtensionBlocks
  Extension blocks as found in ShellBags and other places in the Registry
  ☆25Updated last year
• EricZimmerman / TLEFilePlugins
  Plugins for parsing CSV files in Timeline Explorer. This project allows for anyone to add more supported files (i,e. they get a Line #/ta…
  ☆28Updated 8 months ago
• log2timeline / dfwinreg
  Digital Forensics Windows Registry (dfWinReg)
  ☆54Updated last month
• kacos2000 / Jumplist-Browser
  Automatic/Custom Destinations & LNK (MS-SHLLINK) Browser
  ☆41Updated last year
• nannib / Imm2Virtual
  This is a GUI (for Windows 64 bit) for a procedure to virtualize your EWF(E01), DD (raw), AFF disk image file without converting it, dire…
  ☆54Updated 6 years ago
• ArsenalRecon / GmailURLDecoder
  Gmail URL Decoder is an Open Source Python tool that can be used against plaintext or arbitrary raw data files in order to find, extract,…
  ☆62Updated 6 years ago
• kacos2000 / MFT_Record_Viewer
  $MFT Record Viewer
  ☆23Updated 3 years ago
• themeldingwars / Be.HexEditor
  A modified fork of Be.HexEditor for use in debug tools
  ☆14Updated 4 years ago
• woanware / ForensicUserInfo
  Extracts Windows user info including the password hashes
  ☆40Updated 9 years ago
• digitalsleuth / forensics_tools
  Various short scripts and tools used for Digital Forensics
  ☆14Updated 9 months ago
• strozfriedberg / ntfs-linker
  An NTFS journal parser
  ☆79Updated 9 years ago
• kacos2000 / WindowsTimeline
  Windows 10 (v1803+) ActivitiesCache.db parsers (SQLite, PowerShell, .EXE)
  ☆196Updated 2 years ago
• pjrinaldi / wombatforensics
  linux c++, fox-toolkit, multi-threaded forensic gui tool
  ☆49Updated last year
• EricZimmerman / GuidMapping
  ☆22Updated 2 weeks ago
• moaistory / IE10Analyzer
  http://moaistory.blogspot.com/2016/08/ie10analyzer.html
  ☆18Updated last year
• ignacioj / mftf
  $MFT parser (from live systems or a copy of the $MFT) and raw file copy utility
  ☆38Updated last year