Alternatives and similar repositories for btrForensics

Users that are interested in btrForensics are comparing it to the libraries listed below

• pcbje / pyad1
  Python library for parsing AccessData AD1 images
  ☆33Updated 2 years ago
• aff4 / Standard
  AFF4 Standard Documents
  ☆29Updated 4 years ago
• forensicmatt / PancakeViewer
  A DFVFS Backed Forensic Viewer
  ☆42Updated 5 years ago
• MatthewClarkMay / fTriage
  Automating forensic data extraction, reduction, and overall triage of cold disk and memory images.
  ☆21Updated 6 years ago
• msuhanov / regf-samples
  Windows registry samples
  ☆24Updated 7 years ago
• Neo23x0 / prisma
  Command Line STDOUT Colorer
  ☆30Updated 4 years ago
• CIRCL / yara-validator
  Validates yara rules and tries to repair the broken ones.
  ☆41Updated 5 years ago
• pstirparo / utils
  Different DFIR and CTI utilities
  ☆38Updated 5 years ago
• CIRCL / forensic-tools
  CIRCL system forensic tools or a jumble of tools to support forensic
  ☆41Updated 3 years ago
• colincowie / viper-plugins
  Plugins for the Viper Framework
  ☆14Updated 6 years ago
• certtools / contactdb
  The ContactDB project was initiated to cover the need for a tool to maintain contacts for CSIRT teams
  ☆37Updated 4 years ago
• halpomeranz / dfis
  Digital Forensic Investigative Scripts
  ☆87Updated this week
• ralphje / imagemounter
  Command line utility and Python package to ease the (un)mounting of forensic disk images
  ☆126Updated 3 years ago
• aff4 / pyaff4
  The Python implementation of the AFF4 standard.
  ☆45Updated 2 months ago
• PwCUK-CTO / OperationCloudHopper
  Indicators of compromise relating to our report on APT10's targeting of global MSPs
  ☆10Updated 8 years ago
• msuhanov / winmem_decompress
  Extract compressed memory pages from page-aligned data
  ☆47Updated 7 years ago
• blackbagtech / sleuthkit-APFS
  A fork of The Sleuthkit with Pooled Storage and APFS support. See https://www.youtube.com/watch?v=k1XPillJ7aw for more info and usage.
  ☆26Updated 6 years ago
• schrodyn / steezy
  Steezy - Ghetto Yara Generation
  ☆15Updated 2 years ago
• msuhanov / yarp
  Yet another registry parser
  ☆138Updated 3 years ago
• DeKrych / Dshell-plugins
  This plugins repository is an unofficial library of decoders for Dshell, the U.S. Army Research Lab's network forensic analysis framework…
  ☆27Updated 9 years ago
• binglot / misc
  Various scrips
  ☆12Updated 3 years ago
• DFIRnotes / rules
  Some rules, scripts of some use to us
  ☆11Updated last year
• NPS-DEEP / hashdb
  hashdb block hash database tool and API
  ☆45Updated 6 years ago
• forensicmatt / RustyReg
  Registry to JSON. This Project is for learning purposes and is not maintained.
  ☆12Updated 4 years ago
• TakahiroHaruyama / openioc_scan
  openioc_scan Volatility Framework plugin
  ☆44Updated 9 years ago
• py4n6 / pyflag
  Python Forensic and Log Analysis GUI
  ☆27Updated 11 years ago
• CERT-Bund / yara-exporter
  Exporting MISP event attributes to yara rules usable with Thor apt scanner
  ☆24Updated 8 years ago
• binarlyhq / binarly-query
  Command-line Interface for Binar.ly
  ☆39Updated 9 years ago
• dfirfpi / decwindbx
  A sort of a toolkit to decrypt Dropbox Windows DBX files
  ☆31Updated 8 years ago
• msuhanov / Linux-write-blocker
  The kernel patch and userspace tools to enable Linux software write blocking
  ☆152Updated 5 years ago