☆24Aug 30, 2019Updated 6 years ago
Alternatives and similar repositories for win10_auto
Users that are interested in win10_auto are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Rekall Memory Forensic Framework☆33Aug 5, 2019Updated 6 years ago
- Repo with supporting material for the talk titled "Cracking the Beacon: Automating the extraction of implant configurations"☆11Feb 6, 2025Updated last year
- ☆17Jan 21, 2026Updated 2 months ago
- The "DFUR" Splunk application and data that was presented at the 2020 SANS DFIR Summit.☆13Sep 9, 2020Updated 5 years ago
- Rolling Timeline for Incident Recorder.☆14Dec 4, 2023Updated 2 years ago
- MircoSoft Detours 4.0.1,MIT License,Support X86,X64,ARM,IA64☆12Apr 23, 2018Updated 7 years ago
- 请叫我跳跳虎☆33Dec 21, 2020Updated 5 years ago
- \ PowerAvails Powershell /☆10Jun 30, 2018Updated 7 years ago
- ghidra scripts☆15Feb 5, 2021Updated 5 years ago
- ☆22Jan 31, 2023Updated 3 years ago
- AWS EKS Cluster Forensics☆23Aug 16, 2021Updated 4 years ago
- Anything related to Ghidra☆12Apr 22, 2019Updated 6 years ago
- Binary analysis. Capstone+Keystone+Unicorn = static and dynamic binary analysis☆12Oct 11, 2019Updated 6 years ago
- Help deobfuscate VBScript☆18Jul 1, 2022Updated 3 years ago
- Stand-alone parser for User Access Logging from Server 2012 and newer systems☆79Jan 9, 2024Updated 2 years ago
- A debugger / emulator for Ghidra☆14Oct 30, 2019Updated 6 years ago
- PowerShell scripts to aid investigators when utilizing O365 and Magnet Axiom.☆12Aug 26, 2024Updated last year
- ☆22Jul 6, 2018Updated 7 years ago
- The future home for a library able to parse in memory lot of complex structures from common shared libs and syscalls☆15Apr 4, 2023Updated 2 years ago
- Crowdstrike Falcon Host script for iterating through instances to get alert and other relevant data☆13Jul 16, 2019Updated 6 years ago
- ARDvark parses the Apple Remote Desktop (ARD) files to pull out application usage, user activity, and filesystem listings.☆36Jun 1, 2023Updated 2 years ago
- Simple x64dbg plugin to show registers on every step.☆16Jul 27, 2019Updated 6 years ago
- Repository for LNK stuff☆31Aug 31, 2022Updated 3 years ago
- "Fuzzy matching" for SQLite databases☆30Jun 30, 2020Updated 5 years ago
- Exploits I've authored☆60Aug 13, 2019Updated 6 years ago
- ☆23Jun 1, 2023Updated 2 years ago
- PowerShell 'Hero': scripts for DFIR and automation with a PowerShell menu example.☆37Jul 11, 2023Updated 2 years ago
- Quick ESXi Log Parser☆30Oct 20, 2025Updated 5 months ago
- Registry to JSON. This Project is for learning purposes and is not maintained.☆12Dec 28, 2021Updated 4 years ago
- Wrapper for TSK (Sleuth Kit) Bindings☆12Jan 10, 2023Updated 3 years ago
- Linux-KVM with rVMI extensions☆22Aug 28, 2017Updated 8 years ago
- llama is lightgrep's amazing media analyzer☆16Oct 28, 2025Updated 4 months ago
- pyGoRE - Python library for analyzing Go binaries☆66Feb 12, 2022Updated 4 years ago
- pwn & ctf tools for windows☆25Jun 21, 2020Updated 5 years ago
- iknowthis Linux SystemCall Fuzzer☆20Apr 18, 2019Updated 6 years ago
- Parsers for common structures across windows formats.☆12Aug 23, 2023Updated 2 years ago
- Convert C++ classes to plain C structs for use with IDA / ghidra local types☆16Jan 3, 2021Updated 5 years ago
- A small tool to easily mount APFS image on macOS for forensics.☆16Jul 30, 2020Updated 5 years ago
- ☆22Nov 22, 2025Updated 4 months ago