libyal / libwtcdb

Related projects ⓘ

Alternatives and complementary repositories for libwtcdb

• msuhanov / ntfs-samples
  NTFS samples
  ☆25Updated 4 years ago
• libyal / libexe
  Library and tools to access the executable (EXE) format
  ☆41Updated 4 months ago
• libyal / libhibr
  Library and tools to access the Windows Hibernation File (hiberfil.sys) format
  ☆13Updated 4 months ago
• libyal / libmsiecf
  Library and tools to access the Microsoft Internet Explorer (MSIE) Cache File (index.dat) files
  ☆16Updated 4 months ago
• m417z / Windows-10-Technical-Preview-Source-Tree
  Based on http://windows-internals.com/source/files.html by Alex Ionescu
  ☆20Updated 5 years ago
• adoxa / regdump
  Dump Windows registry hives as text.
  ☆15Updated 5 years ago
• crackinglandia / fuu
  [F]aster [U]niversal [U]npacker
  ☆46Updated 11 years ago
• OSRDrivers / tunnel
  Demonstrate the behavior of the tunnel cache on Windows
  ☆9Updated 5 years ago
• libyal / assorted
  Assorted documentation, scripts and tools
  ☆28Updated last month
• jschicht / PowerMft
  Powerful commandline $MFT record editor.
  ☆23Updated 9 years ago
• jp-slackspace / x-tension-c-sharp
  An updated C# port of X-Ways X-Tensions API.
  ☆12Updated 6 years ago
• glmcdona / MALM
  MALM: Malware Monitor
  ☆45Updated 11 years ago
• EricZimmerman / SDB
  Parse Microsoft shim databases
  ☆29Updated 2 months ago
• libyal / libvsmbr
  Library and tools to access the Master Boot Record (MBR) volume system format
  ☆12Updated 5 months ago
• williballenthin / wevt_template
  extract and parse WEVT_TEMPLATEs from PE files
  ☆18Updated 10 months ago
• libyal / libagdb
  Library and tools to access the Windows SuperFetch database format
  ☆12Updated 5 months ago
• libyal / libfsext
  Library and tools to access the Extended File System
  ☆16Updated 5 months ago
• AndrewRathbun / VanillaWindowsRegistryHives
  A repo that contains a recursive dump from the ROOT key of every Windows Registry hive (using KAPE) from a vanilla (clean) install of eve…
  ☆43Updated last year
• gamozolabs / pdblister
  Faster version of `symchk /om` for generating PDB manifests of offline machines
  ☆19Updated 3 years ago
• chadgough / x-tensions
  X-Ways C# X-Tension API
  ☆15Updated 11 years ago
• libyal / libregf
  Library and tools to access the Windows NT Registry File (REGF) format
  ☆107Updated 3 months ago
• Dafti / pyrefs
  Refs file system dumps analyzer.
  ☆12Updated 6 years ago
• williballenthin / LfLe
  Recover event log entries from an image by heurisitically looking for record structures.
  ☆27Updated 9 years ago
• mrexodia / YaraGen
  Plugin for x64dbg to generate Yara rules from function basic blocks.
  ☆35Updated 7 years ago
• dbrant / keyfind_aes_rsa
  Detect AES and RSA keys in a memory dump.
  ☆12Updated 8 years ago
• EricZimmerman / OleCf
  Library to process OLE compound file format. This is a work in progress and was initially written for jumplist parsing (for which it does…
  ☆18Updated 2 months ago
• libyal / libolecf
  Library and tools to access the OLE 2 Compound File (OLECF) format
  ☆69Updated 3 months ago
• bartblaze / MessageBoxTests
  MessageBox files (EXE, DLL) for testing purposes.
  ☆12Updated 5 years ago
• relyze-ltd / plugins
  A repository of example plugins for Relyze Desktop.
  ☆33Updated 4 years ago
• ArsenalRecon / SdbaParser
  Parser for Sdba memory pool tags
  ☆17Updated 3 years ago