Library to access the Windows Shell Item format
☆74May 10, 2026Updated last week
Alternatives and similar repositories for libfwsi
Users that are interested in libfwsi are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Parser for Sdba memory pool tags☆21Jul 16, 2021Updated 4 years ago
- Carve $MFT records from a chunk of data (for instance a memory dump)☆16Aug 21, 2016Updated 9 years ago
- Generates anti-sandbox analysis HTA files without payloads☆16Mar 16, 2017Updated 9 years ago
- Cross-platform, open-source shellbag parser☆160Jan 31, 2023Updated 3 years ago
- Registry Miner☆14Apr 10, 2018Updated 8 years ago
- GPUs on demand by Runpod - Special Offer Available • AdRun AI, ML, and HPC workloads on powerful cloud GPUs—without limits or wasted spend. Deploy GPUs in under a minute and pay by the second.
- ☆15Sep 26, 2022Updated 3 years ago
- Registry to JSON. This Project is for learning purposes and is not maintained.☆12Dec 28, 2021Updated 4 years ago
- NTFS parser, plus linking capabilites between MFT LogFile and UsnJrnl☆38Aug 23, 2016Updated 9 years ago
- Technical add-on to ingest json formatted volatility memory analysis plugin outputs☆13May 21, 2018Updated 8 years ago
- Library for Object Linking and Embedding (OLE) data types☆12May 10, 2026Updated last week
- Parser for $UsnJrnl on NTFS☆124Nov 27, 2022Updated 3 years ago
- Small random scripts for various things I find myself needing to repeat/automate☆25Apr 6, 2021Updated 5 years ago
- Sample script of accessing NVMe drive using Windows' inbox NVMe driver☆25May 8, 2023Updated 3 years ago
- A GC link parser for both linkfiles and jumplists.☆18Oct 28, 2016Updated 9 years ago
- End-to-end encrypted cloud storage - Proton Drive • AdSpecial offer: 40% Off Yearly / 80% Off First Month. Protect your most important files, photos, and documents from prying eyes.
- Flexible clean up and backup of log files.☆17Nov 21, 2024Updated last year
- Parser for Windows Scheduled Task files.☆13Apr 26, 2023Updated 3 years ago
- Windows Registry Knowledge Base☆195Updated this week
- A repo for centralizing ongoing research on the new Windows 10/11 DFIR artifact, EventTranscript.db.☆43Jul 18, 2022Updated 3 years ago
- Tools for parsing Forensic images☆41Dec 14, 2018Updated 7 years ago
- ☆15Aug 12, 2024Updated last year
- The script receives the S.M.A.R.T. status of the disks on the local or remote computer and displays it in the graphical user interface☆14Oct 25, 2017Updated 8 years ago
- Fileless Ransomware Example☆38Aug 2, 2017Updated 8 years ago
- Binaries for the log2timeline projects and dependencies☆40Updated this week
- End-to-end encrypted cloud storage - Proton Drive • AdSpecial offer: 40% Off Yearly / 80% Off First Month. Protect your most important files, photos, and documents from prying eyes.
- Lnk file parser☆96May 5, 2026Updated 2 weeks ago
- Parser for $LogFile on NTFS☆217Jun 1, 2025Updated 11 months ago
- This is a Python port of lnk-parse-1.0, a tool to parse Windows .lnk files.☆80Apr 28, 2023Updated 3 years ago
- Code to generate a squarified treemap UI for data visualization☆22May 14, 2018Updated 8 years ago
- 正确解析 _HEAP_VS_***符号 ,支持在最新win11 24h2 运行,替换windbg自带的!pool命令☆17Nov 30, 2024Updated last year
- ☆17Jun 1, 2024Updated last year
- Overview of Microsoft Patch Tuesday☆14Sep 13, 2024Updated last year
- Extensible Storage Engine (ESE) Database File Knowledge Base☆46Updated this week
- moved to Codeberg☆11Jul 24, 2024Updated last year
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- ☆46Apr 6, 2017Updated 9 years ago
- Contains over 375 samples of Windows Portable Executable (PE) files ranging from the common to the completely esoteric with detailed orig…☆49Sep 25, 2024Updated last year
- A collection of YARA rules for public use. Built from information in intelligence profiles, dossiers and file work.☆18Sep 10, 2023Updated 2 years ago
- Metadata hash incorporating the Rich Header for robustness against packing and other malware tricks☆73Aug 14, 2021Updated 4 years ago
- Powershell scripts to help with deployment and building.☆41Apr 9, 2014Updated 12 years ago
- A list of IOCs applicable to PoshC2☆24Aug 3, 2020Updated 5 years ago
- http://moaistory.blogspot.com/2018/10/winsearchdbanalyzer.html☆132Jul 20, 2024Updated last year