limbenjamin / nTimetoolsLinks
Timestomper and Timestamp checker with nanosecond accuracy for NTFS volumes
☆50Updated 3 years ago
Alternatives and similar repositories for nTimetools
Users that are interested in nTimetools are comparing it to the libraries listed below
Sorting:
- ☆34Updated 2 years ago
- Repository for LNK stuff☆31Updated 2 years ago
- A scanner that files with compromised or untrusted code signing certificates written in python.☆65Updated last year
- ☆22Updated 2 years ago
- Modular malware analysis artifact collection and correlation framework☆53Updated last year
- ☆45Updated last year
- The repository accompanying the Buer Emulation workshop☆24Updated 3 years ago
- AdHoc solutions☆48Updated last year
- Simple PowerShell script to enable process scanning with Yara.☆95Updated 2 years ago
- Quickly search for references to a GUID in DLLs, EXEs, and drivers☆74Updated 3 years ago
- This is a repo for fetching Applocker event log by parsing the win-event log☆31Updated 3 years ago
- Rapidly building a Windows 10 system to use for dynamic malware analysis (sandbox), sending data to Elastic Cloud.☆50Updated last year
- Dumping credentials through windbg and pykd☆41Updated last year
- MITRE TTPs derived from Conti's leaked playbooks from XSS.IS☆39Updated 3 years ago
- A powershell parser for https://github.com/ufrisk/MemProcFS☆44Updated 4 years ago
- ProcDot Malware Sandbox☆24Updated last week
- Unpacking and decryption tools for the Emotet malware☆45Updated 3 years ago
- ☆93Updated 3 years ago
- Tools helpful for malware analysis☆23Updated 11 months ago
- Userland API monitor for threat hunting☆58Updated 5 years ago
- Specialized tool to dump Position Independent Code.☆22Updated 5 years ago
- ☆11Updated 3 years ago
- Manipulate timestamps on NTFS☆52Updated 10 years ago
- Triaging Windows event logs based on SANS Poster☆39Updated 2 years ago
- Epimitheus is a tool that uses graphical database Neo4j for Windows Events visualization.☆19Updated 3 years ago
- Create a cool process tree like https://twitter.com/ACEResponder.☆35Updated 2 years ago
- Live memory analysis detecting malware IOCs in processes, modules, handles, tokens, threads, .NET assemblies, memory address space and en…☆42Updated 10 months ago
- Python wrappers for mal_unpack☆36Updated last year
- ☆57Updated 9 months ago
- 100 Days of YARA to be updated with rules & ideas as the year progresses☆60Updated 2 years ago