Alternatives and similar repositories for ntfsdump

Users that are interested in ntfsdump are comparing it to the libraries listed below

• sumeshi / ntfsfind
  An efficient tool for search files, directories, and alternate data streams directly from NTFS image files.
  ☆29Updated last year
• libyal / winevt-kb
  Windows Event Log Knowledge Base
  ☆28Updated last week
• sumeshi / mft2es
  A library for fast parse & import of Windows Master File Table($MFT) into Elasticsearch.
  ☆11Updated 5 months ago
• ydkhatri / macOS_FE
  Tools for macOS Forensic Bootable media
  ☆15Updated 5 years ago
• ufrisk / MemProcFS-plugins
  ☆61Updated last year
• DissectMalware / yaradbg-backend
  ☆25Updated last year
• herosi / triage-collector
  ☆23Updated last year
• tccontre / KnowledgeBase
  Collection of tips, tools, arsenal and techniques I've learned during RE and other CyberSecStuff
  ☆57Updated 2 months ago
• memoryforensics1 / VolExp
  volatility explorer
  ☆93Updated 5 years ago
• CybercentreCanada / configextractor-py
  Python Library for ConfigExtractor
  ☆12Updated 2 weeks ago
• libyal / libscca
  Library and tools to access the Windows Prefetch File (SCCA) format.
  ☆81Updated this week
• kusano / ntfsdump
  Extract files from NTFS Volume
  ☆33Updated 4 years ago
• analyzeDFIR / analyzePF
  Tool for analysis of Windows Prefetch files
  ☆26Updated 7 years ago
• DissectMalware / xlrd2
  xlrd2 is a variant of xlrd that is actively maintained
  ☆23Updated last year
• ydkhatri / Appx-Analysis
  Scripts and tools created for appx analysis talk (Magnet summit 2019)
  ☆18Updated last year
• Cainor / Calendarinho
  Manage Your Large Team of Consultants
  ☆11Updated 2 months ago
• stairwell-inc / threat-research
  Repository of tools, YARA rules, and code-snippets from Stairwell's research team.
  ☆23Updated last year
• EricZimmerman / OleCf
  Library to process OLE compound file format. This is a work in progress and was initially written for jumplist parsing (for which it does…
  ☆19Updated 10 months ago
• ald3ns / XPR-dump
  Helper scripts to automate the extraction of YARA rules from XProtectRemediators
  ☆22Updated last year
• williballenthin / viv-utils
  Utilities for working with vivisect
  ☆25Updated 2 months ago
• connormcgarr / Presentations
  ☆30Updated 3 months ago
• Dump-GUY / Python3---Binary-Data-Manipulation
  Python 3 - Manipulation and conversation with different data type (Bytes operations)
  ☆27Updated 3 years ago
• mandiant / win10_rekall
  Rekall Memory Forensic Framework
  ☆33Updated 6 years ago
• ignacioj / mftf
  $MFT parser (from live systems or a copy of the $MFT) and raw file copy utility
  ☆38Updated last year
• GDATASoftwareAG / TypeRefHasher
  CLI tool to compute the TypeRefHash for .NET binaries.
  ☆19Updated 4 years ago
• vobst / BPFVol3
  Linux BPF plugins for Volatility3
  ☆24Updated last year
• NTFSparse / ntfs_parse
  NTFS parser, plus linking capabilites between MFT LogFile and UsnJrnl
  ☆38Updated 9 years ago
• mandiant / vbScript_deobfuscator
  Help deobfuscate VBScript
  ☆17Updated 3 years ago
• msuhanov / ntfs-samples
  NTFS samples
  ☆26Updated 5 years ago
• avast / authenticode-parser
  Authenticode-parser is a simple C library for Authenticode format parsing using OpenSSL.
  ☆23Updated last year