Gets the execution of files using the activitiescache.db artifact using sqlite3, checks the files' digital signatures, and applies several generic YARA rules used for detecting Minecraft cheats.
☆10May 12, 2025Updated 9 months ago
Alternatives and similar repositories for ActivitiesCache-execution
Users that are interested in ActivitiesCache-execution are comparing it to the libraries listed below
Sorting:
- pcasvc-executed is my fork of zack-src's service-execution, adding digital signature checking and generics made with yara rules☆11May 12, 2025Updated 9 months ago
- parses windows prefetch files, analyzing digital signatures, and also generics, with lots of features.☆11May 12, 2025Updated 9 months ago
- A tool of mine, using xxstrings from zaikoarg to get the executed files using strings of some processes, and checking digital signatures …☆11May 12, 2025Updated 9 months ago
- Parses NTFS journal entries☆14Jan 20, 2025Updated last year
- Parses info about paths on a .txt it will ask to be provided, covering digital signatures, yara rules and replaces.☆13May 28, 2025Updated 9 months ago
- parses the BAM forensic artefact, showing digital signatures, last executed time, converted path according to harddiskvolume and generic …☆27Jun 3, 2025Updated 9 months ago
- Advanced Multi-Featured Telegram UserBot, Built in Python Using Telethon lib.☆40Mar 20, 2022Updated 3 years ago
- JNI made safer and easier with no performance impact☆61Feb 20, 2026Updated last week
- ☆569Updated this week
- PowerForensics provides an all in one platform for live disk forensic analysis☆1,428Nov 16, 2023Updated 2 years ago
- Advanced Multi-Featured Telegram UserBot, Built in Python Using Telethon lib.☆2,930Sep 17, 2025Updated 5 months ago