Alternatives and similar repositories for prefetch-hash-cracker

Users that are interested in prefetch-hash-cracker are comparing it to the libraries listed below

• alex-cart / LEAF
  Linux Evidence Acquisition Framework
  ☆118Updated last year
• yarox24 / EvtxHussar
  Initial triage of Windows Event logs
  ☆102Updated last year
• cybergoatpsyops / detections
  Placeholder for my detection repo and misc detection engineering content
  ☆42Updated 2 years ago
• knight0x07 / OneNoteAnalyzer
  A C# based tool for analysing malicious OneNote documents
  ☆116Updated 2 years ago
• AndrewRathbun / SANSGoldPaperResearch_FOR500_Rathbun
  A repository containing the research output from my GCFE Gold Paper which compared Windows 10 and Windows 11.
  ☆27Updated 3 years ago
• kacos2000 / Prefetch-Browser
  Browse Windows Prefetch versions: 17,23,26,30v1/2,31 & some of SuperFetch .7db/.db's
  ☆62Updated 10 months ago
• northloopforensics / Bitlocker_Key_Finder
  Search datasets for Bitlocker recovery files and triage live systems for Bitlocker keys.
  ☆47Updated 9 months ago
• AhmedKamal1432 / Evilize
  Triaging Windows event logs based on SANS Poster
  ☆41Updated last month
• Sh1n0g1 / z9
  PowerShell Script Analyzer
  ☆70Updated 2 years ago
• kacos2000 / Evtx_Log_Browser
  Evtx Log (xml) Browser
  ☆55Updated 2 years ago
• jstrosch / subparse
  Modular malware analysis artifact collection and correlation framework
  ☆53Updated last year
• RomaissaAdjailia / Get-AppLockerEventlog
  This is a repo for fetching Applocker event log by parsing the win-event log
  ☆31Updated 3 years ago
• embee-research / Yara-detection-rules
  Yara Rules for Modern Malware
  ☆79Updated last year
• BinaryDefense / YaraMemoryScanner
  Simple PowerShell script to enable process scanning with Yara.
  ☆96Updated 3 years ago
• alwashali / detection-validation
  Detection rule validation
  ☆40Updated 2 years ago
• MHaggis / ShellSweep
  ShellSweeping the evil.
  ☆53Updated last year
• keydet89 / RegRipper4.0
  RegRipper4.0
  ☆72Updated 2 months ago
• stuxnet999 / EventTranscriptParser
  Python based tool to extract forensic info from EventTranscript.db (Windows Diagnostic Data)
  ☆68Updated 2 years ago
• AbdulRhmanAlfaifi / Rhaegal
  Rhaegal is a tool written in Python 3 used to scan Windows Event Logs for suspicious logs. Rhaegal uses custom rule format to detect sus…
  ☆41Updated 2 years ago
• g-les / 100DaysofYARA
  100 Days of YARA to be updated with rules & ideas as the year progresses
  ☆60Updated 2 years ago
• stuxnet999 / volatility-binaries
  Contains compiled binaries of Volatility
  ☆37Updated 5 months ago
• DCScoder / ESXiTri
  ESXi Cyber Security Incident Response Script
  ☆25Updated last year
• JPCERTCC / Windows-Symbol-Tables
  Windows symbol tables for Volatility 3
  ☆91Updated last year
• abusech / ThreatFox
  Open IOC sharing platform
  ☆61Updated 11 months ago
• strozfriedberg / QELP
  Quick ESXi Log Parser
  ☆27Updated last week
• CyberDefend3r / PowerShell-Deobfuscation-Exercise
  An exercise to practice deobfuscating PowerShell Scripts.
  ☆26Updated 2 years ago
• QueenSquishy / plague
  Default Detections for EDR
  ☆96Updated last year
• MalGamy / YARA_Rules
  ☆67Updated 2 years ago
• BushidoUK / Abused-Legitimate-Services
  Cloud, CDN, and marketing services leveraged by cybercriminals and APT groups
  ☆61Updated 3 years ago
• pr0xylife / IcedID
  ☆33Updated last year