Alternatives and similar repositories for dtformats

Users that are interested in dtformats are comparing it to the libraries listed below

• ydkhatri / UnifiedLogReader
  A parser for Unified logging tracev3 files
  ☆97Updated 6 months ago
• jjarava / mac-osx-forensics
  Automatically exported from code.google.com/p/mac-osx-forensics
  ☆28Updated 10 years ago
• libyal / libyal
  Yet another library library (and tools)
  ☆217Updated last month
• mnrkbys / macosac
  Forensic Artifact Collection Tool for macOS
  ☆118Updated 6 months ago
• nicoleibrahim / DSStoreParser
  macOS .DS_Store Parser
  ☆75Updated 4 years ago
• dlcowen / FSEventsParser
  Parser for OSX/iOS FSEvents Logs
  ☆272Updated last year
• msuhanov / regf
  Windows registry file format specification
  ☆354Updated 7 years ago
• digitalsleuth / time_decode
  A timestamp and date decoder written for python 3
  ☆41Updated 3 weeks ago
• sshock / AFFLIBv3
  AFF is an open and extensible file format to store disk images and associated metadata.
  ☆90Updated 5 months ago
• vastlimits / esmat
  macOS Endpoint Security Message Analysis Tool
  ☆47Updated 4 years ago
• mac4n6 / FSEventsParser
  Parser fo macOS/iOS FSEvents Logs
  ☆42Updated last year
• mandiant / macos-UnifiedLogs
  A cross platform parser for Apple UnifiedLogs!
  ☆318Updated last week
• Velocidex / c-aff4
  An AFF4 C++ implementation.
  ☆213Updated 2 years ago
• SentineLabs / aevt_decompile
  This is a work-in-progress command line tool for reversing run-only AppleScripts. It will help parse the output of applescript-disassembl…
  ☆71Updated 5 years ago
• msuhanov / dfir_ntfs
  An NTFS/FAT parser for digital forensics & incident response
  ☆217Updated 3 months ago
• pstirparo / machofile
  machofile is a module to parse Mach-O binary files
  ☆90Updated last week
• aff4 / Standard
  AFF4 Standard Documents
  ☆29Updated 4 years ago
• MagnetForensics / Hibr2Bin
  Comae Hibernation File Decompressor
  ☆156Updated 2 years ago
• EC-DIGIT-CSIRC / sysdiagnose
  Forensic toolkit for iOS sysdiagnose feature
  ☆246Updated this week
• libyal / libfshfs
  Library and tools to access the Mac OS Hierarchical File System (HFS)
  ☆37Updated last week
• ydkhatri / macOS_FE
  Tools for macOS Forensic Bootable media
  ☆14Updated 5 years ago
• libyal / libscca
  Library and tools to access the Windows Prefetch File (SCCA) format.
  ☆83Updated last month
• ralphje / imagemounter
  Command line utility and Python package to ease the (un)mounting of forensic disk images
  ☆126Updated 3 years ago
• ydkhatri / MacForensics
  Scripts to process macOS forensic artifacts
  ☆204Updated last year
• EricZimmerman / Prefetch
  Windows Prefetch parser. Supports all known versions from Windows XP to Windows 10.
  ☆116Updated last year
• Jinmo / applescript-disassembler
  A simple run-only applescript disassembler
  ☆142Updated last month
• libyal / libbde
  Library and tools to access the BitLocker Drive Encryption (BDE) encrypted volumes
  ☆241Updated last month
• williballenthin / INDXParse
  Tool suite for inspecting NTFS artifacts.
  ☆225Updated 2 years ago
• jschicht / LogFileParser
  Parser for $LogFile on NTFS
  ☆212Updated 8 months ago
• aff4 / pyaff4
  The Python implementation of the AFF4 standard.
  ☆45Updated 2 months ago