Alternatives and similar repositories for evtxview

Users that are interested in evtxview are comparing it to the libraries listed below

• secana / CertDump
  Dump certificates from PE files in different formats
  ☆38Updated 2 years ago
• kacos2000 / Jumplist-Browser
  Automatic/Custom Destinations & LNK (MS-SHLLINK) Browser
  ☆41Updated last year
• zodiacon / TaskSched
  ☆30Updated 3 years ago
• themeldingwars / Be.HexEditor
  A modified fork of Be.HexEditor for use in debug tools
  ☆14Updated 4 years ago
• jborean93 / PSDetour-Hooks
  Auditing Hooks for https://github.com/jborean93/PSDetour
  ☆13Updated 9 months ago
• jonny-jhnson / PowerParse
  PowerShell PE Parser
  ☆63Updated last year
• Kriegel / ComPower
  ComPower is a Windows PowerShell module to work with the Component Object Model (COM).
  ☆32Updated 11 years ago
• EricZimmerman / OleCf
  Library to process OLE compound file format. This is a work in progress and was initially written for jumplist parsing (for which it does…
  ☆19Updated last year
• EricZimmerman / Lnk
  Lnk file parser
  ☆90Updated 8 months ago
• zodiacon / DotNetExp
  ☆44Updated 2 years ago
• jparnell8839 / Certificate-Password-Recovery
  Brute Force password recovery for exported Windows PFX certificates
  ☆17Updated 9 years ago
• secana / PeNet-Analyzer
  Analyzers for Portable Executable anomalies and other malware behavior.
  ☆33Updated this week
• microsoft / MSO-Scripts
  Set of scripts for performance investigations on Windows.
  ☆32Updated last month
• jborean93 / PSDetour
  Windows Detour Hooking in PowerShell
  ☆82Updated last month
• TimMisiak / ConDbgX
  A console debugger using DbgX and Terminal.Gui
  ☆30Updated 3 years ago
• kacos2000 / WinEDB
  Windows.EDB Browser
  ☆60Updated 2 years ago
• zodiacon / DebugHelp
  .NET wrapper for dbghelp.dll
  ☆21Updated 6 years ago
• EricZimmerman / RegistryPlugins
  ☆76Updated this week
• huds0nx / dumbassembly
  version 0.5.8
  ☆17Updated 4 years ago
• AndrewRathbun / SigHunter
  A C# (.NET 6) tool to compare the file signature of files recursively and inform the user of matches and mismatches
  ☆16Updated last year
• EricZimmerman / ExtensionBlocks
  Extension blocks as found in ShellBags and other places in the Registry
  ☆25Updated last year
• DidierStevens / AnalyzePESig
  ☆19Updated 2 years ago
• EricZimmerman / JLECmd
  Automatic and Custom Destinations jump list parser with Windows 10 support
  ☆115Updated 4 months ago
• 0xHasanM / Autopsy-Registry-Explorer
  Autopsy Module to analyze Registry Hives
  ☆15Updated 3 years ago
• SadProcessor / EzETW
  Cmdlets for capturing Windows Events
  ☆14Updated 3 years ago
• williballenthin / wevt_template
  extract and parse WEVT_TEMPLATEs from PE files
  ☆18Updated 2 years ago
• perpetual-motion / discutils
  DiscUtils is a .NET library to read and write ISO files and Virtual Machine disk files (VHD, VDI, XVA, VMDK, etc). DiscUtils is developed…
  ☆19Updated 10 years ago
• aaronparker / AppLocker
  AppLocker baseline configuration with the AaronLocker module. Used for testing with Windows 10, Intune etc.
  ☆20Updated 2 months ago
• NorthwaveSecurity / passwordstate-decryptor
  PowerShell script that decrypts password entries from a Passwordstate server.
  ☆26Updated 3 years ago
• WalkingCat / SymDiff
  Diff tool for comparing symbols in PDB files
  ☆84Updated 5 years ago