Alternatives and similar repositories for prefetch-hash-cracker

Users that are interested in prefetch-hash-cracker are comparing it to the libraries listed below

• yarox24 / EvtxHussar
  Initial triage of Windows Event logs
  ☆102Updated last year
• alex-cart / LEAF
  Linux Evidence Acquisition Framework
  ☆118Updated last year
• kacos2000 / Prefetch-Browser
  Browse Windows Prefetch versions: 17,23,26,30v1/2,31 & some of SuperFetch .7db/.db's
  ☆62Updated 9 months ago
• knight0x07 / OneNoteAnalyzer
  A C# based tool for analysing malicious OneNote documents
  ☆116Updated 2 years ago
• cybergoatpsyops / detections
  Placeholder for my detection repo and misc detection engineering content
  ☆42Updated last year
• embee-research / Yara-detection-rules
  Yara Rules for Modern Malware
  ☆79Updated last year
• AhmedKamal1432 / Evilize
  Triaging Windows event logs based on SANS Poster
  ☆40Updated 3 weeks ago
• kacos2000 / Evtx_Log_Browser
  Evtx Log (xml) Browser
  ☆55Updated 2 years ago
• AndrewRathbun / SANSGoldPaperResearch_FOR500_Rathbun
  A repository containing the research output from my GCFE Gold Paper which compared Windows 10 and Windows 11.
  ☆27Updated 3 years ago
• BinaryDefense / YaraMemoryScanner
  Simple PowerShell script to enable process scanning with Yara.
  ☆96Updated 3 years ago
• Sh1n0g1 / z9
  PowerShell Script Analyzer
  ☆70Updated last year
• keydet89 / RegRipper4.0
  RegRipper4.0
  ☆68Updated last month
• MHaggis / ShellSweep
  ShellSweeping the evil.
  ☆53Updated last year
• jstrosch / subparse
  Modular malware analysis artifact collection and correlation framework
  ☆53Updated last year
• AbdulRhmanAlfaifi / Rhaegal
  Rhaegal is a tool written in Python 3 used to scan Windows Event Logs for suspicious logs. Rhaegal uses custom rule format to detect sus…
  ☆41Updated 2 years ago
• RomaissaAdjailia / Get-AppLockerEventlog
  This is a repo for fetching Applocker event log by parsing the win-event log
  ☆31Updated 3 years ago
• LETHAL-FORENSICS / Collect-MemoryDump
  Collect-MemoryDump - Automated Creation of Windows Memory Snapshots for DFIR
  ☆248Updated 6 months ago
• fox-it / citrix-netscaler-triage
  Dissect triage scripts for Citrix NetScaler devices
  ☆62Updated last week
• pr0xylife / IcedID
  ☆33Updated last year
• northloopforensics / Bitlocker_Key_Finder
  Search datasets for Bitlocker recovery files and triage live systems for Bitlocker keys.
  ☆47Updated 8 months ago
• stairwell-inc / cobalt-strike-stager-parser
  ☆36Updated 2 years ago
• stuxnet999 / EventTranscriptParser
  Python based tool to extract forensic info from EventTranscript.db (Windows Diagnostic Data)
  ☆68Updated 2 years ago
• cmdshiftd / elrond
  Accelerating the collection, processing, analysis and outputting of digital forensic artefacts.
  ☆31Updated 8 months ago
• QueenSquishy / plague
  Default Detections for EDR
  ☆96Updated last year
• MalGamy / YARA_Rules
  ☆67Updated 2 years ago
• BushidoUK / Abused-Legitimate-Services
  Cloud, CDN, and marketing services leveraged by cybercriminals and APT groups
  ☆61Updated 2 years ago
• CyberDefend3r / PowerShell-Deobfuscation-Exercise
  An exercise to practice deobfuscating PowerShell Scripts.
  ☆26Updated 2 years ago
• g-les / 100DaysofYARA
  100 Days of YARA to be updated with rules & ideas as the year progresses
  ☆60Updated 2 years ago
• malienist / lupo
  Lupo - Malware IOC Extractor. Debugging module for Malware Analysis Automation
  ☆106Updated 3 years ago
• jschicht / SetMace
  Manipulate timestamps on NTFS
  ☆52Updated 10 years ago