mkorman90 / regipyLinks
Regipy is an os independent python library for parsing offline registry hives
☆257Updated last month
Alternatives and similar repositories for regipy
Users that are interested in regipy are comparing it to the libraries listed below
Sorting:
- An NTFS/FAT parser for digital forensics & incident response☆203Updated 6 months ago
- A modern Python-3-based alternative to RegRipper☆195Updated 2 months ago
- EVTXtract recovers and reconstructs fragments of EVTX log files from raw binary data, including unallocated space and memory images.☆193Updated 2 months ago
- ☆302Updated 4 years ago
- Tool suite for inspecting NTFS artifacts.☆223Updated last year
- ☆276Updated 2 years ago
- A VBA parser and emulation engine to analyze malicious macros.☆96Updated 2 weeks ago
- An AFF4 C++ implementation.☆201Updated 2 years ago
- YARA malware query accelerator (web frontend)☆428Updated 2 months ago
- "Evolving AppCompat/AmCache data analysis beyond grep"☆204Updated 3 years ago
- Yet another registry parser☆132Updated 3 years ago
- A collection of YARA rules we wish to share with the world, most probably referenced from http://blog.inquest.net.☆375Updated 3 years ago
- ☆428Updated 2 years ago
- Command line access to the Registry