Alternatives and similar repositories for btrForensics

Users that are interested in btrForensics are comparing it to the libraries listed below

• CIRCL / forensic-tools
  CIRCL system forensic tools or a jumble of tools to support forensic
  ☆42Updated 2 years ago
• colincowie / viper-plugins
  Plugins for the Viper Framework
  ☆14Updated 5 years ago
• Neo23x0 / prisma
  Command Line STDOUT Colorer
  ☆30Updated 4 years ago
• CIRCL / yara-validator
  Validates yara rules and tries to repair the broken ones.
  ☆39Updated 4 years ago
• MatthewClarkMay / fTriage
  Automating forensic data extraction, reduction, and overall triage of cold disk and memory images.
  ☆21Updated 6 years ago
• msuhanov / regf-samples
  Windows registry samples
  ☆24Updated 6 years ago
• certtools / contactdb
  The ContactDB project was initiated to cover the need for a tool to maintain contacts for CSIRT teams
  ☆37Updated 3 years ago
• msuhanov / winmem_decompress
  Extract compressed memory pages from page-aligned data
  ☆46Updated 6 years ago
• pidydx / PyIOCe
  Python OpenIOC Editor
  ☆18Updated 9 years ago
• DeKrych / Dshell-plugins
  This plugins repository is an unofficial library of decoders for Dshell, the U.S. Army Research Lab's network forensic analysis framework…
  ☆27Updated 9 years ago
• ralphje / imagemounter
  Command line utility and Python package to ease the (un)mounting of forensic disk images
  ☆124Updated 2 years ago
• cyb3rfox / MFTEntryCarver
  Carve files for MFT entries (eg. blkls output or memory dumps). Recovers filenames (long & short), timestamps ($STD & $FN) and data if re…
  ☆21Updated 6 years ago
• halpomeranz / dfis
  Digital Forensic Investigative Scripts
  ☆83Updated this week
• pcbje / pyad1
  Python library for parsing AccessData AD1 images
  ☆33Updated 2 years ago
• stvemillertime / Absolutely-Positively-NOT-Hacking-Back-with-Pcap
  Streaming Unexpected Network Byte Sequences with High Probability of Blue Screening or Otherwise Crashing Attacker Command-and-Control No…
  ☆22Updated 6 years ago
• binglot / misc
  Various scrips
  ☆12Updated 2 years ago
• rj-chap / NFWorkshop
  Network Forensics Workshop Files
  ☆17Updated 10 years ago
• fireeye / brocapi
  Bro PCAP Processing and Tagging API
  ☆28Updated 7 years ago
• PwCUK-CTO / OperationCloudHopper
  Indicators of compromise relating to our report on APT10's targeting of global MSPs
  ☆10Updated 7 years ago
• aff4 / pyaff4
  The Python implementation of the AFF4 standard.
  ☆44Updated last year
• pstirparo / utils
  Different DFIR and CTI utilities
  ☆37Updated 5 years ago
• jtmoran / parseRS
  Parses IE's Automatic Crash Recovery Files
  ☆16Updated 8 years ago
• TakahiroHaruyama / openioc_scan
  openioc_scan Volatility Framework plugin
  ☆43Updated 9 years ago
• binarlyhq / binarly-query
  Command-line Interface for Binar.ly
  ☆38Updated 8 years ago
• threatTransform / threatTransform
  A streamlined way to create STIX documents!
  ☆32Updated 11 years ago
• williballenthin / LfLe
  Recover event log entries from an image by heurisitically looking for record structures.
  ☆27Updated 9 years ago
• aff4 / Standard
  AFF4 Standard Documents
  ☆29Updated 3 years ago
• msuhanov / yarp
  Yet another registry parser
  ☆133Updated 3 years ago
• reed1713 / ELAT
  Event Log Analysis Tools
  ☆29Updated 8 years ago
• forensicmatt / PancakeViewer
  A DFVFS Backed Forensic Viewer
  ☆40Updated 5 years ago