Alternatives and similar repositories for dinfo

Users that are interested in dinfo are comparing it to the libraries listed below

• jeperez / windows-operating-system-archaeology
  windows-operating-system-archaeology @Enigma0x3 @subTee
  ☆45Updated 8 years ago
• ohjeongwook / WindowsEventTools
  Collection Of Scripts And Utilities For Windows Event Hunting
  ☆18Updated 5 years ago
• mattifestation / MSFTTraceMessageFormat
  All TMF files that I extracted from Microsoft PDBs.
  ☆12Updated 6 years ago
• cyb3rfox / MFTEntryCarver
  Carve files for MFT entries (eg. blkls output or memory dumps). Recovers filenames (long & short), timestamps ($STD & $FN) and data if re…
  ☆21Updated 6 years ago
• StrangerealIntel / DeltaFlare
  ☆12Updated 4 years ago
• joswr1ght / nm2lp
  Convert Windows Netmon Monitor Mode Wireless Packet Captures to Libpcap Format
  ☆15Updated 5 years ago
• newlog / r2com
  radare2 script to help on COM objects reverse engineering
  ☆11Updated 8 years ago
• randomaccess3 / block-parser
  Parser for Windows PowerShell script block logs
  ☆13Updated 6 months ago
• Yara-Rules / YaraRET
  Carving tool based in Radare2 & Yara
  ☆16Updated 6 years ago
• RealityNet / McAFuse
  Toolset to analyze disks encrypted with McAFee FDE technology
  ☆19Updated 4 years ago
• SecurityRiskAdvisors / PDBlaster
  ☆47Updated 5 years ago
• EricZimmerman / SDB
  Parse Microsoft shim databases
  ☆30Updated 5 months ago
• SentineLabs / PowerTrick
  This is a repository for the public blog with Labs indicators of compromise and code
  ☆18Updated 5 years ago
• nccgroup / WindowsMemPageDelta
  A Microsoft Windows service to provide telemetry on Windows executable memory page changes to facilitate threat detection
  ☆31Updated 4 years ago
• tyranid / canape
  CANAPE Network Testing Tool
  ☆34Updated 6 years ago
• Xenov-X / PoSH_Teams_Message_Thief
  Quick and dirty PoSH code to read teams messages
  ☆22Updated 4 months ago
• airbus-cert / cacdec
  The hidden mstsc recorder player
  ☆29Updated 5 years ago
• jonny-jhnson / jonny-jhnson
  ☆14Updated 3 months ago
• matthewdunwoody / PS_logging_reg
  A Windows REG file to enable all default PowerShell logging on a system with PowerShell v5 installed
  ☆16Updated 9 years ago
• WiredPulse / Invoke-GhostLog
  Removal of certain event logs within a Windows OS
  ☆8Updated 5 years ago
• stvemillertime / Absolutely-Positively-NOT-Hacking-Back-with-Pcap
  Streaming Unexpected Network Byte Sequences with High Probability of Blue Screening or Otherwise Crashing Attacker Command-and-Control No…
  ☆22Updated 5 years ago
• jp-slackspace / x-tension-c-sharp
  An updated C# port of X-Ways X-Tensions API.
  ☆12Updated 7 years ago
• sebmarchand / pyetw
  ☆13Updated 9 years ago
• bsi-group / autorun-logger-server
  Server for receiving autorun data from the clients
  ☆13Updated 7 years ago
• vletoux / ADSecrets
  Set of ultra technical notes about AD
  ☆18Updated 7 years ago
• danielbohannon / DevSec-Defense
  Accompanying PowerShell Modules for DevSec Defense Presentation
  ☆29Updated 7 years ago
• dfir-it / unsapien
  Python script to extract embedded data from binaries generated by SAPIEN Script Packager
  ☆11Updated last year
• ydkhatri / Appx-Analysis
  Scripts and tools created for appx analysis talk (Magnet summit 2019)
  ☆16Updated last year
• k3idii / ION
  Indicators of Normality
  ☆11Updated 2 years ago
• gentilkiwi / kirandomtpm
  Get random bytes from the TPM (tool + BCrypt RNG provider)
  ☆17Updated 4 years ago