Alternatives and similar repositories for ntfsdump:

Users that are interested in ntfsdump are comparing it to the libraries listed below

• sumeshi / ntfsfind
  An efficient tool for search files, directories, and alternate data streams directly from NTFS image files.
  ☆26Updated last year
• libyal / winevt-kb
  Windows Event Log Knowledge Base
  ☆23Updated 5 months ago
• mandiant / win10_rekall
  Rekall Memory Forensic Framework
  ☆32Updated 5 years ago
• DissectMalware / xlrd2
  xlrd2 is a variant of xlrd that is actively maintained
  ☆23Updated 7 months ago
• herosi / triage-collector
  ☆22Updated 5 months ago
• libyal / libfwevt
  Library for Windows XML Event Log (EVTX) data types
  ☆18Updated 6 months ago
• JPCERTCC / etw-scan
  ETW forensic tool for Volatility3 plugin
  ☆11Updated 4 months ago
• sumeshi / mft2es
  A library for fast parse & import of Windows Master File Table($MFT) into Elasticsearch.
  ☆11Updated 10 months ago
• ydkhatri / macOS_FE
  Tools for macOS Forensic Bootable media
  ☆15Updated 4 years ago
• analyzeDFIR / analyzePF
  Tool for analysis of Windows Prefetch files
  ☆26Updated 6 years ago
• williballenthin / wevt_template
  extract and parse WEVT_TEMPLATEs from PE files
  ☆18Updated last year
• joxeankoret / deeptoad
  DeepToad is a library and a tool to clusterize similar files using fuzzy hashing
  ☆20Updated 4 years ago
• Dump-GUY / Invoke-DetectItEasy
  Invoke-DetectItEasy is a wrapper for excelent tool called Detect-It-Easy. This PS module is very useful for Threat Hunting and Forensics.
  ☆25Updated 3 years ago
• DissectMalware / pyxlsb2
  an Excel 2007+ Binary Workbook (xlsb) parser for Python
  ☆21Updated 2 years ago
• williballenthin / viv-utils
  Utilities for working with vivisect
  ☆25Updated 3 weeks ago
• proferosec / HelloKittyUnpacker
  A tool to assist in analysis of packed HelloKitty ransomware binaries
  ☆11Updated 2 years ago
• connormcgarr / Presentations
  ☆28Updated 4 months ago
• ydkhatri / Appx-Analysis
  Scripts and tools created for appx analysis talk (Magnet summit 2019)
  ☆15Updated last year
• memoryforensics1 / VolExp
  volatility explorer
  ☆91Updated 4 years ago
• JPCERTCC / AutoYara4FLIRT
  ☆15Updated last year
• ArsenalRecon / SdbaParser
  Parser for Sdba memory pool tags
  ☆18Updated 3 years ago
• airbus-cert / etwbreaker
  An IDA plugin to deal with Event Tracing for Windows (ETW)
  ☆52Updated 2 years ago
• PwCUK-CTO / ScatterBee_Analysis
  Scripts to aid analysis of files obfuscated with ScatterBee.
  ☆19Updated 2 years ago
• mandiant / win10_auto
  ☆24Updated 5 years ago
• tokesr / usb_investigator
  ☆9Updated 5 years ago
• janstarke / regview
  Offline-viewer for registry files
  ☆11Updated 6 months ago
• re-fox / documentation
  ☆13Updated 4 years ago
• tccontre / KnowledgeBase
  Collection of tips, tools, arsenal and techniques I've learned during RE and other CyberSecStuff
  ☆54Updated last month
• hasherezade / tag_converter
  ☆22Updated 4 years ago
• woanware / etw-event-dumper
  ☆33Updated 3 years ago