Alternatives and similar repositories for btrForensics:

Users that are interested in btrForensics are comparing it to the libraries listed below

• socprime / SigmaRulesIntegration
  ☆15Updated 6 years ago
• certtools / contactdb
  The ContactDB project was initiated to cover the need for a tool to maintain contacts for CSIRT teams
  ☆37Updated 2 years ago
• mdegrazia / Google-Analytic-Cookie-Cruncher
  Parse IE, FireFox, Chrome and Safari Cookies for Google Analytic values
  ☆23Updated 8 years ago
• gleeda / misc-scripts
  misc scripts
  ☆36Updated 6 years ago
• MatthewClarkMay / fTriage
  Automating forensic data extraction, reduction, and overall triage of cold disk and memory images.
  ☆21Updated 5 years ago
• trolldbois / python-cymru-services
  API to use Cymru services
  ☆27Updated 11 years ago
• blackbagtech / sleuthkit-APFS
  A fork of The Sleuthkit with Pooled Storage and APFS support. See https://www.youtube.com/watch?v=k1XPillJ7aw for more info and usage.
  ☆26Updated 5 years ago
• cyb3rfox / MFTEntryCarver
  Carve files for MFT entries (eg. blkls output or memory dumps). Recovers filenames (long & short), timestamps ($STD & $FN) and data if re…
  ☆21Updated 5 years ago
• msuhanov / regf-samples
  Windows registry samples
  ☆23Updated 6 years ago
• h3x2b / yara-rules
  Yara rules for detecting malware
  ☆23Updated 4 months ago
• defensivedepth / Sysmon_OSSEC
  OSSEC Decoder & Rulesets for Sysmon Events
  ☆15Updated 9 years ago
• colincowie / viper-plugins
  Plugins for the Viper Framework
  ☆14Updated 5 years ago
• Beercow / ProcDOT-Plugins
  Plugins to add funtionality to ProcDOT. http://www.procdot.com
  ☆23Updated last year
• jschicht / Secure2Csv
  Decode security descriptors in $Secure on NTFS
  ☆20Updated 2 years ago
• log2timeline / l2tbinaries
  Binaries for the log2timeline projects and dependencies
  ☆38Updated 4 months ago
• weslambert / securityonion-strelka
  ☆12Updated 5 years ago
• aff4 / Standard
  AFF4 Standard Documents
  ☆28Updated 2 years ago
• Silv3rHorn / autoripy
  Attempt to replicate the functions of auto_rip by Corey Harrell in Python.
  ☆13Updated 5 months ago
• xme / mime2vt
  Unpack MIME attachments from a file and check them against virustotal.com
  ☆45Updated 8 years ago
• msuhanov / winmem_decompress
  Extract compressed memory pages from page-aligned data
  ☆42Updated 6 years ago
• CIRCL / traceroute-circl
  Traceroute improved wrapper for CSIRT and CERT operators
  ☆37Updated 3 months ago
• automayt / FlowPlotter
  Generates visualizations from the output of flow tools such as SiLK.
  ☆35Updated 8 years ago
• CIRCL / forensic-tools
  CIRCL system forensic tools or a jumble of tools to support forensic
  ☆42Updated last year
• 504ensicsLabs / find_times
  Discover potential timestamps within the Windows Registry
  ☆18Updated 10 years ago
• py4n6 / pyflag
  Python Forensic and Log Analysis GUI
  ☆24Updated 10 years ago
• REMnux / salt-states
  This repository maintains the SaltStack state files for the REMnux distro.
  ☆41Updated last week
• scudette / rekall-agent-server
  Rekall is an endpoint security solution.
  ☆39Updated 6 years ago
• gdbinit / armorysandbox
  A USB armory based USB sandbox
  ☆20Updated 7 years ago