Alternatives and similar repositories for ntfsdump:

Users that are interested in ntfsdump are comparing it to the libraries listed below

• sumeshi / ntfsfind
  An efficient tool for search files, directories, and alternate data streams directly from NTFS image files.
  ☆25Updated 11 months ago
• ydkhatri / macOS_FE
  Tools for macOS Forensic Bootable media
  ☆15Updated 4 years ago
• JPCERTCC / etw-scan
  ETW forensic tool for Volatility3 plugin
  ☆11Updated 2 months ago
• skelsec / aiowinreg
  Registry hive parsing the async way
  ☆20Updated 4 months ago
• libyal / winevt-kb
  Windows Event Log Knowledge Base
  ☆22Updated 3 months ago
• connormcgarr / Presentations
  ☆26Updated 3 months ago
• ydkhatri / Appx-Analysis
  Scripts and tools created for appx analysis talk (Magnet summit 2019)
  ☆15Updated 11 months ago
• herosi / triage-collector
  ☆21Updated 3 months ago
• ArsenalRecon / SdbaParser
  Parser for Sdba memory pool tags
  ☆17Updated 3 years ago
• mandiant / win10_rekall
  Rekall Memory Forensic Framework
  ☆30Updated 5 years ago
• DissectMalware / xlrd2
  xlrd2 is a variant of xlrd that is actively maintained
  ☆23Updated 5 months ago
• sumeshi / mft2es
  A library for fast parse & import of Windows Master File Table($MFT) into Elasticsearch.
  ☆11Updated 8 months ago
• mandiant / win10_auto
  ☆24Updated 5 years ago
• tokesr / usb_investigator
  ☆9Updated 5 years ago
• mandiant / vbScript_deobfuscator
  Help deobfuscate VBScript
  ☆15Updated 2 years ago
• DissectMalware / yaradbg-backend
  ☆24Updated last year
• randomaccess3 / block-parser
  Parser for Windows PowerShell script block logs
  ☆13Updated last month
• memoryforensics1 / VolExp
  volatility explorer
  ☆91Updated 4 years ago
• nccgroup / WindowsMemPageDelta
  A Microsoft Windows service to provide telemetry on Windows executable memory page changes to facilitate threat detection
  ☆30Updated 4 years ago
• woanware / etw-event-dumper
  ☆32Updated 2 years ago
• packing-box / bintropy
  Analysis tool for estimating the likelihood that a binary contains compressed or encrypted bytes
  ☆44Updated last month
• stairwell-inc / threat-research
  Repository of tools, YARA rules, and code-snippets from Stairwell's research team.
  ☆22Updated 11 months ago
• fr0gger / MalwareMuncher
  Malware Muncher is a proof-of-concept Python script that utilizes the Frida framework for binary instrumentation and API hooking, enablin…
  ☆43Updated last year
• malsearchs / Static-Reverse-Engineering-SRE
  SRE - Dissecting Malware for Static Analysis & the Complete Command-line Tool
  ☆51Updated last month
• tccontre / KnowledgeBase
  Collection of tips, tools, arsenal and techniques I've learned during RE and other CyberSecStuff
  ☆54Updated 8 months ago
• 0xHasanM / Autopsy-Registry-Explorer
  Autopsy Module to analyze Registry Hives
  ☆14Updated 2 years ago
• JPCERTCC / QuasarRAT-Analysis
  QuasarRAT analysis tools and research report
  ☆25Updated last year
• Macmod / malkom
  Malkom is an extensible and simple similarity graph generator for malware analysis aimed at helping analysts visualize and cluster sets o…
  ☆16Updated last year
• decalage2 / collisions
  Hash collisions and their exploitations
  ☆9Updated 2 years ago
• Harvester57 / CodeIntegrity-DriverBlocklist
  ☆20Updated last week