Windows Registry Knowledge Base
☆196May 25, 2026Updated last month
Alternatives and similar repositories for winreg-kb
Users that are interested in winreg-kb are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Digital Forensics Artifacts Knowledge Base☆89May 16, 2026Updated last month
- Windows registry samples☆24Nov 18, 2018Updated 7 years ago
- Extensible Storage Engine (ESE) Database File Knowledge Base☆48May 15, 2026Updated last month
- A repo for centralizing ongoing research on the new Windows 10/11 DFIR artifact, EventTranscript.db.☆43Jul 18, 2022Updated 3 years ago
- A repo that contains a recursive dump from the ROOT key of every Windows Registry hive (using KAPE) from a vanilla (clean) install of eve…☆52Oct 29, 2025Updated 8 months ago
- Simple, predictable pricing with DigitalOcean hosting • AdAlways know what you'll pay with monthly caps and flat pricing. Enterprise-grade infrastructure trusted by 600k+ customers.
- Windows Event Log Knowledge Base☆34May 16, 2026Updated last month
- Assist analyst and threat hunters to understand Windows authentication logs and to analyze brutforce scenarios.☆21Jul 1, 2023Updated 3 years ago
- Documentation repository☆48Feb 11, 2026Updated 4 months ago
- Collection of data formats☆195May 16, 2026Updated last month
- USN Journal full path builder☆69Apr 16, 2026Updated 2 months ago
- This script will generate hashes (MD5, SHA1, SHA256), submit the MD5 to Virus Total, and produce a text file with the results.☆15Jul 13, 2023Updated 2 years ago
- Windows registry file format specification☆365Oct 27, 2018Updated 7 years ago
- Digital Forensics Windows Registry (dfWinReg)☆53May 27, 2026Updated last month
- Forensic cheatsheets for use with cheat☆15Dec 2, 2021Updated 4 years ago
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
- An NTFS/FAT parser for digital forensics & incident response☆234Oct 31, 2025Updated 8 months ago
- The goal of this repo is to archive artifacts from all versions of various OS's and categorizing them by type. This will help with artifa…☆656May 11, 2026Updated last month
- Parser for $LogFile on NTFS☆218Jun 5, 2026Updated last month
- Digital Forensics artifact repository☆1,244May 16, 2026Updated last month
- Parse Microsoft shim databases☆32Apr 26, 2026Updated 2 months ago
- Various PowerShells scripts I've made (or others have made) to automate some of the boring stuff in my everyday DFIR journey!☆53Jan 9, 2026Updated 5 months ago
- Blueteam operational triage registry hunting/forensic tool.☆148Sep 2, 2025Updated 10 months ago
- Collection of Event ID ressources useful for Digital Forensics and Incident Response☆660Jun 19, 2024Updated 2 years ago
- A Windows registry file parser written in Rust☆40Oct 30, 2025Updated 8 months ago
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- Event Tracing For Windows (ETW) Resources☆432Oct 30, 2025Updated 8 months ago
- A curated list of KAPE-related resources☆189May 1, 2025Updated last year
- Assorted documentation, scripts and tools☆39Jun 20, 2026Updated 2 weeks ago
- Search Index Database Reporter☆139Oct 28, 2025Updated 8 months ago
- This repository serves as a place for community created Targets and Modules for use with KAPE.☆850Jun 17, 2026Updated 2 weeks ago
- A framework for backdooring Microsoft Nuget packages.☆10Jan 9, 2024Updated 2 years ago
- Yet another registry parser☆138Apr 15, 2022Updated 4 years ago
- Various commands, tools, techniques that you can use to examine live Windows systems for signs of Compromise or for Threat Hunting.Can al…☆15May 30, 2026Updated last month
- Automatic/Custom Destinations & LNK (MS-SHLLINK) Browser☆50Jun 3, 2026Updated last month
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- Windows Events Attack Samples☆2,586Jan 24, 2023Updated 3 years ago
- A python polymorphic engine for C programs☆11Dec 8, 2023Updated 2 years ago
- A config file that's curated for DFIR examiners with shortcuts to common Windows artifacts and settings enabled that help make your life …☆41Jan 6, 2025Updated last year
- This is a repository for reporting any issues in any of my software☆13May 15, 2018Updated 8 years ago
- ☆18Mar 28, 2023Updated 3 years ago
- ☆314Aug 14, 2020Updated 5 years ago
- Windows 10 (v1803+) ActivitiesCache.db parsers (SQLite, PowerShell, .EXE)☆196Feb 16, 2023Updated 3 years ago