Alternatives and similar repositories for OpenForensics

Users that are interested in OpenForensics are comparing it to the libraries listed below

• nesfit / NetfoxDetective
  Network Forensic Extendable Analysis Tool
  ☆39Updated 3 years ago
• woanware / ForensicUserInfo
  Extracts Windows user info including the password hashes
  ☆41Updated 8 years ago
• EricZimmerman / bstrings
  A better strings utility!
  ☆136Updated 3 weeks ago
• alpine-sec / SPECTR3
  Forensic tool for acquisition, triage and analysis of remote block devices via iSCSI protocol.
  ☆41Updated 8 months ago
• EricZimmerman / RegistryExplorerBookmarks
  Registry Explorer bookmark definitions
  ☆43Updated 6 months ago
• EricZimmerman / iisGeolocate
  geolocate ip addresses in IIS logs
  ☆18Updated 6 months ago
• ignacioj / mftf
  $MFT parser (from live systems or a copy of the $MFT) and raw file copy utility
  ☆37Updated 11 months ago
• EricZimmerman / MFT
  MFT parser
  ☆68Updated 5 months ago
• EricZimmerman / USBDevices
  Get USB Devices from Registry hives
  ☆21Updated 3 years ago
• EricZimmerman / RegistryPlugins
  ☆68Updated last week
• woanware / wmi-parser
  Parses the WMI object database....looking for persistence
  ☆32Updated 5 years ago
• secana / TransNet
  .Net library to create Maltego transformations.
  ☆18Updated 5 months ago
• EricZimmerman / OleCf
  Library to process OLE compound file format. This is a work in progress and was initially written for jumplist parsing (for which it does…
  ☆19Updated 5 months ago
• EricZimmerman / Lnk
  Lnk file parser
  ☆87Updated last month
• log2timeline / dfwinreg
  Digital Forensics Windows Registry (dfWinReg)
  ☆52Updated 6 months ago
• digitalsleuth / forensics_tools
  Various short scripts and tools used for Digital Forensics
  ☆14Updated 3 months ago
• EricZimmerman / Registry
  Full featured, offline Registry parser in C#
  ☆231Updated last week
• nannib / Imm2Virtual
  This is a GUI (for Windows 64 bit) for a procedure to virtualize your EWF(E01), DD (raw), AFF disk image file without converting it, dire…
  ☆54Updated 5 years ago
• thereisnotime / xxUSBSentinel
  Windows anti-forensics USB monitoring tool.
  ☆71Updated 2 years ago
• sumeshi / ntfsfind
  An efficient tool for search files, directories, and alternate data streams directly from NTFS image files.
  ☆26Updated last year
• EricZimmerman / VSCMount
  Mount VSCs with ease!
  ☆16Updated 5 months ago
• kacos2000 / MFT_Record_Viewer
  $MFT Record Viewer
  ☆22Updated 2 years ago
• msuhanov / winmem_decompress
  Extract compressed memory pages from page-aligned data
  ☆45Updated 6 years ago
• ArsenalRecon / GmailURLDecoder
  Gmail URL Decoder is an Open Source Python tool that can be used against plaintext or arbitrary raw data files in order to find, extract,…
  ☆57Updated 5 years ago
• moaistory / IE10Analyzer
  http://moaistory.blogspot.com/2016/08/ie10analyzer.html
  ☆17Updated 11 months ago
• Neo23x0 / yara
  The pattern matching swiss knife
  ☆10Updated 4 years ago
• EricZimmerman / JLECmd
  Automatic and Custom Destinations jump list parser with Windows 10 support
  ☆97Updated 6 months ago
• jschicht / Secure2Csv
  Decode security descriptors in $Secure on NTFS
  ☆20Updated 3 years ago
• nccgroup / grepify
  Grepify the GUI Regex Text Scanner for Code Reviewers
  ☆22Updated 12 years ago
• themeldingwars / Be.HexEditor
  A modified fork of Be.HexEditor for use in debug tools
  ☆15Updated 3 years ago