kusano / ntfsdump
Extract files from NTFS Volume
☆32Updated 3 years ago
Alternatives and similar repositories for ntfsdump:
Users that are interested in ntfsdump are comparing it to the libraries listed below
- Blog posts☆30Updated 4 years ago
- A ready-made template for a project based on libpeconv.☆47Updated 2 months ago
- ☆22Updated 4 years ago
- Demos and presentation from SECArmy Village Grayhat 2020☆38Updated 2 years ago
- Trace events in real time sessions☆45Updated last year
- Not Another Code Injection Toolkit☆16Updated 3 years ago
- Library for Windows XML Event Log (EVTX) data types☆18Updated 6 months ago
- Authenticode-parser is a simple C library for Authenticode format parsing using OpenSSL.☆17Updated last year
- Data and structures regarding the research done on WdFilter☆12Updated 5 years ago
- Dumps information about all the callback objects found in a dump file and the functions registered for them☆35Updated 4 years ago
- A small library helping to parse commandline parameters (for C/C++)☆57Updated last year
- CmdDesktopSwitch is a small utility that lists all windows desktops and provides the option to switch between them. This can be used to i…☆35Updated 8 years ago
- Static library and headers for linking your software with ntdll.dll☆32Updated 5 years ago
- Call 32bit NtDLL API directly from WoW64 Layer☆60Updated 4 years ago
- Clone running process with ZwCreateProcess☆57Updated 4 years ago
- Yet another Windows DLL injector.☆39Updated 3 years ago
- ☆23Updated last year
- ☆31Updated 4 years ago
- Windows x64 Process Scanner to detect application compatability shims☆37Updated 6 years ago
- ☆65Updated 3 years ago
- Windows kernel PDB data parsed into YAML☆36Updated 5 months ago
- ☆18Updated 4 years ago
- ☆46Updated 4 months ago
- Rekall Memory Forensic Framework☆32Updated 5 years ago
- Dump certificates from PE files in different formats☆38Updated last year
- MSTSC Packet Dump Utility☆29Updated 3 years ago
- A Practical example of ELAM (Early Launch Anti-Malware)☆32Updated 3 years ago
- Simple command line version of Sysinternals WinObj. Currently just lists object names and types given an object manager directory.☆20Updated last year
- IDAPython scripts☆15Updated 7 years ago
- A collection of empty MSVC projects, compiled using various versions and configurations of Visual Studio.☆32Updated 10 months ago