Alternatives and similar repositories for libwtcdb:

Users that are interested in libwtcdb are comparing it to the libraries listed below

• libyal / libvsmbr
  Library and tools to access the Master Boot Record (MBR) volume system format
  ☆13Updated 8 months ago
• williballenthin / wevt_template
  extract and parse WEVT_TEMPLATEs from PE files
  ☆18Updated last year
• OSWatcher / windows-desktop
  History and analysis of Windows desktop images
  ☆17Updated 4 years ago
• Dafti / pyrefs
  Refs file system dumps analyzer.
  ☆12Updated 6 years ago
• libyal / libfsext
  Library and tools to access the Extended File System
  ☆17Updated last month
• libyal / libmsiecf
  Library and tools to access the Microsoft Internet Explorer (MSIE) Cache File (index.dat) files
  ☆16Updated 6 months ago
• EricZimmerman / SDB
  Parse Microsoft shim databases
  ☆29Updated last month
• m417z / Windows-10-Technical-Preview-Source-Tree
  Based on http://windows-internals.com/source/files.html by Alex Ionescu
  ☆21Updated 5 years ago
• adoxa / regdump
  Dump Windows registry hives as text.
  ☆16Updated 6 years ago
• libyal / libexe
  Library and tools to access the executable (EXE) format
  ☆41Updated 7 months ago
• msuhanov / winmem_decompress
  Extract compressed memory pages from page-aligned data
  ☆42Updated 6 years ago
• Fleex255 / CustomShim
  Example/starter code for custom Windows application compatibility shims
  ☆32Updated 4 years ago
• mattifestation / MSFTTraceMessageFormat
  All TMF files that I extracted from Microsoft PDBs.
  ☆12Updated 5 years ago
• libyal / libagdb
  Library and tools to access the Windows SuperFetch database format
  ☆12Updated 7 months ago
• airbus-cert / cacdec
  The hidden mstsc recorder player
  ☆28Updated 4 years ago
• jp-slackspace / x-tension-c-sharp
  An updated C# port of X-Ways X-Tensions API.
  ☆12Updated 6 years ago
• williballenthin / LfLe
  Recover event log entries from an image by heurisitically looking for record structures.
  ☆27Updated 9 years ago
• sumeshi / ntfsfind
  An efficient tool for search files, directories, and alternate data streams directly from NTFS image files.
  ☆26Updated last year
• rsa9000 / regfanalysistools
  Low-level MS Windows registry files analysis tools
  ☆19Updated 8 years ago
• EricZimmerman / OleCf
  Library to process OLE compound file format. This is a work in progress and was initially written for jumplist parsing (for which it does…
  ☆18Updated 2 weeks ago
• libyal / libsigscan
  Library for binary signature scanning.
  ☆27Updated 6 months ago
• repnz / autoit-analysis
  AutoIt Analysis Library: Parser & Emulator For Malware Researchers
  ☆20Updated 5 years ago
• Harvester57 / CodeIntegrity-DriverBlocklist
  ☆20Updated last month
• zodiacon / InterceptionDemo
  Sample showing the use of CoGetInterceptor
  ☆21Updated 3 years ago
• Mattiwatti / WinMain-is-usually-a-function
  Windows NT port of 'Main is usually a function. So then when is it not?'
  ☆25Updated 11 months ago
• mandiant / win10_auto
  ☆24Updated 5 years ago
• AndrewRathbun / VanillaWindowsRegistryHives
  A repo that contains a recursive dump from the ROOT key of every Windows Registry hive (using KAPE) from a vanilla (clean) install of eve…
  ☆45Updated last year
• libyal / libscca
  Library and tools to access the Windows Prefetch File (SCCA) format.
  ☆72Updated last month
• kphongagsorn / windows-undocumented-apis
  Projects on undocumented windows APIs, a keylogger PoC, and dll injection PoC. Based off of a Defcon workshop
  ☆34Updated 7 years ago
• ydkhatri / macOS_FE
  Tools for macOS Forensic Bootable media
  ☆15Updated 4 years ago