Extensible Storage Engine (ESE) Database File Knowledge Base
☆46Dec 23, 2025Updated 2 months ago
Alternatives and similar repositories for esedb-kb
Users that are interested in esedb-kb are comparing it to the libraries listed below
Sorting:
- Library and tools to access the Extensible Storage Engine (ESE) Database File (EDB) format.☆371Dec 16, 2025Updated 2 months ago
- Assorted documentation, scripts and tools☆39Dec 11, 2025Updated 2 months ago
- Windows Registry Knowledge Base☆195Dec 23, 2025Updated 2 months ago
- Library and tools to access the Microsoft Internet Explorer (MSIE) Cache File (index.dat) files☆17Dec 19, 2025Updated 2 months ago
- Python scripts for parsing the index file and individual cache files from the cache2 folder of Firefox defaulted on in version 32☆27Sep 27, 2018Updated 7 years ago
- Library for Object Linking and Embedding (OLE) data types☆12Nov 27, 2025Updated 3 months ago
- Learn Winapi in this Repo with examples, to understand its abstraction in reverse engineering for Windows.☆11Aug 8, 2022Updated 3 years ago
- Demonstrate the behavior of the tunnel cache on Windows☆11Aug 13, 2019Updated 6 years ago
- Tool to parse SRU database☆25Mar 1, 2018Updated 8 years ago
- Tool to extract the $UsnJrnl from an NTFS volume☆109Jul 30, 2019Updated 6 years ago
- Library and tools to access the Windows Hibernation File (hiberfil.sys) format☆13Dec 20, 2025Updated 2 months ago
- https://gallery.technet.microsoft.com/PS2EXE-Convert-PowerShell-9e4e07f1☆14Apr 13, 2017Updated 8 years ago
- Tools for macOS Forensic Bootable media☆15May 20, 2020Updated 5 years ago
- Scripts and tools created for appx analysis talk (Magnet summit 2019)☆19Feb 26, 2024Updated 2 years ago
- Kernel Cache Decryption for iOS☆17Nov 16, 2021Updated 4 years ago
- A proof-of-concept DLL that prints out the password a user enters into Veracrypt while decrypting a volume.☆15Oct 26, 2018Updated 7 years ago
- very simple masm64 example to demonstrate how to compile MASM 64 bit using NMake/CMake☆14Aug 23, 2022Updated 3 years ago
- Manually perform syscalls without going through any external API or DLL.☆19Apr 19, 2023Updated 2 years ago
- ☆12Jul 29, 2022Updated 3 years ago
- Carve $MFT records from a chunk of data (for instance a memory dump)☆16Aug 21, 2016Updated 9 years ago
- C library that is intended for providing methods for executing and injecting code.☆17Aug 14, 2024Updated last year
- ☆17Oct 31, 2022Updated 3 years ago
- Parser for $UsnJrnl on NTFS☆121Nov 27, 2022Updated 3 years ago
- JotFS, a content-defined deduplicating file store☆20Feb 25, 2023Updated 3 years ago
- This header file enforces Clang warnings to bu turned-on for specific flags (almost everyone, at least each one I was able to find).☆70Nov 11, 2021Updated 4 years ago
- This is a set of tools for doing forensics analysis on Microsoft ESE databases.☆130Jan 31, 2022Updated 4 years ago
- Source files for my posts☆17Jun 20, 2023Updated 2 years ago
- POC tool to extract all persistent clipboard history data from clipboard service process memory☆58Jul 31, 2024Updated last year
- Windows (ShadowMove) Socket Duplication☆87Apr 19, 2020Updated 5 years ago
- An easy-to-use and highly customizable crawler that enables you to create your own little Web archives (WARC/CDX)☆25Oct 9, 2017Updated 8 years ago
- Parser for $LogFile on NTFS☆215Jun 1, 2025Updated 9 months ago
- Socks4 reverse proxy for penetration testing. Python 2 and 3 compatible.☆17Jul 1, 2022Updated 3 years ago
- a dkom rootkit that targets windows x64 systems. the rootkit hooks and edits criticl memory sections in order to hide different resources…☆18Jul 5, 2023Updated 2 years ago
- Making Shellcode fully undetectable using uuid☆23May 7, 2021Updated 4 years ago
- search for a driver/dll module that has a wanted section bigger than the size of your image☆21Aug 14, 2021Updated 4 years ago
- Svendsen Tech's PowerShell nmap-like port scanner accepting IPv4 CIDR notation☆52Oct 31, 2022Updated 3 years ago
- Yet another library library (and tools)☆217Dec 21, 2025Updated 2 months ago
- PowerShell Script to facilitate the processing of SRUM data for on-the-fly forensics and if needed threat hunting☆23Oct 26, 2019Updated 6 years ago
- Extract GUIDs from .NET assemblies☆21Jun 15, 2016Updated 9 years ago