williamskosasi / Wielview
An open-source computer forensics tool that can display summary as the result of Windows Event Log analysis based on the chosen function(s). Feel free to contact me through my socials and tell me what do you think about this tool.
☆11Updated 2 years ago
Alternatives and similar repositories for Wielview
Users that are interested in Wielview are comparing it to the libraries listed below
Sorting:
- Forensic cheatsheets for use with cheat☆15Updated 3 years ago
- A repository of output using KAPE (!EZParser Module) for various publicly available forensic images!☆17Updated 8 months ago
- Quick ESXi Log Parser☆19Updated 4 months ago
- A simple script to read the contents of a zip/tar/folder and extract metadata☆22Updated last month
- Just Another broken Registry Parser (JARP)☆16Updated 11 months ago
- ☆10Updated last year
- ☆13Updated 2 years ago
- ☆20Updated 2 months ago
- Various PowerShells scripts I've made (or others have made) to automate some of the boring stuff in my everyday DFIR journey!☆45Updated 7 months ago
- Chrome Logs Events and Protobuf Parser☆38Updated 2 years ago
- /ˈhäjˌpäj/ "a confused mixture."☆13Updated last week
- ☆19Updated 3 years ago
- Windows Event Log "Microsoft-Windows-Partition%4Diagnostic.evtx" parser and devices' VSNs extractor.☆19Updated last year
- Memory Baseliner is a script that can compare two windows memory images or perform frequency of occurrence / data stacking analysis on mu…☆53Updated last year
- macOS Artifacts☆29Updated 2 months ago
- A tool designed to extract data from a logical ReFS 3.4 forensic image produced by FTK Imager☆16Updated last year
- WLEAPP is an open source project that aims to parse Windows OS artifacts for the purpose of triage analysis.☆30Updated last year
- Scripts and tools accompanying HP Threat Research blog posts and reports.☆50Updated last year
- Plugins for parsing CSV files in Timeline Explorer. This project allows for anyone to add more supported files (i,e. they get a Line #/ta…☆25Updated 2 weeks ago
- A script that updates KAPE (using Get-KAPEUpdate.ps1) as well as EZ Tools (within .\KAPE\Modules\bin) and the ancillary files that enhanc…☆56Updated 2 weeks ago
- A repository containing the research output from my GCFE Gold Paper which compared Windows 10 and Windows 11.☆27Updated 2 years ago
- Python based tool to extract forensic info from EventTranscript.db (Windows Diagnostic Data)☆68Updated last year
- PowerShell scripts to aid investigators when utilizing O365 and Magnet Axiom.☆12Updated 8 months ago
- Documentation repository☆45Updated 8 months ago
- llama is lightgrep's amazing media analyzer☆16Updated 2 months ago
- A tool for fetching DFIR and other GitHub tools.☆23Updated 2 weeks ago
- Malformed Access Log to CSV - Convert Web Server Access Logs to CSV☆17Updated 8 months ago
- Documentation site for Velociraptor☆45Updated this week
- ☆19Updated 4 months ago
- A repo for centralizing ongoing research on the new Windows 10/11 DFIR artifact, EventTranscript.db.☆39Updated 2 years ago