Pure Python parser for classic Windows Event Log files (.evt)
☆52Jun 30, 2023Updated 2 years ago
Alternatives and similar repositories for python-evt
Users that are interested in python-evt are comparing it to the libraries listed below
Sorting:
- A short and small memory forensics helper.☆52Oct 18, 2017Updated 8 years ago
- Windows Live Artifacts Acquisition Script☆190Jun 20, 2022Updated 3 years ago
- Pure Python parser for Windows Registry hives.☆441Jan 27, 2025Updated last year
- Pure Python parser for Windows Event Log files (.evtx)☆767Jun 18, 2025Updated 9 months ago
- Open source Python library for NTFS analysis☆84Dec 22, 2017Updated 8 years ago
- integrating bro into yara☆33Dec 9, 2014Updated 11 years ago
- Pythonic interface to the Internet Storm Center / DShield API.☆29May 23, 2023Updated 2 years ago
- Recover event log entries from an image by heurisitically looking for record structures.☆26Oct 9, 2015Updated 10 years ago
- A Python library to interface with a cuckoo-modified instance☆23Oct 31, 2016Updated 9 years ago
- EVTXtract recovers and reconstructs fragments of EVTX log files from raw binary data, including unallocated space and memory images.☆209Mar 12, 2025Updated last year
- Fix acquired .evt - Windows Event Log files (Forensics)☆18Mar 29, 2016Updated 9 years ago
- Lite version of PDF X-RAY that uses no backend☆38Nov 11, 2011Updated 14 years ago
- Today Plugin (x64) - A Plugin For x64dbg☆13Jul 17, 2018Updated 7 years ago
- A tool to visually snapshot a website by supplying multiple user-agent. Designed to aid in discovery of different entry points into an ap…☆30May 6, 2016Updated 9 years ago
- Disassembler Library for x86 and x86-64☆15Apr 7, 2020Updated 5 years ago
- A collection of tools mostly written in Python.☆15Feb 4, 2015Updated 11 years ago
- Cross-platform, open-source shellbag parser☆159Jan 31, 2023Updated 3 years ago
- Generate a Yara rule to find base64-encoded files containg a specific keyword☆40Jul 13, 2018Updated 7 years ago
- Sublime Malware Research Tool☆66Oct 28, 2024Updated last year
- A library for building Web clients for keybase, either in the browser or for testing in node.☆15Apr 16, 2023Updated 2 years ago
- Web based code browser using clang to provide basic code analysis.☆46Jul 20, 2017Updated 8 years ago
- Cryptographic Dataset Generation & Modelling Framework☆41Apr 8, 2020Updated 5 years ago
- Pure Python parser for Application Compatibility Shim Databases (.sdb files)☆110Jan 26, 2021Updated 5 years ago
- ☆29Jul 26, 2016Updated 9 years ago
- linux c++, fox-toolkit, multi-threaded forensic gui tool☆48Jul 19, 2024Updated last year
- VolDiff: Malware Memory Footprint Analysis based on Volatility☆197Sep 12, 2017Updated 8 years ago
- Official repository for Pyew.☆394Sep 6, 2019Updated 6 years ago
- ThreatTracker is a Python script designed to monitor and generate alerts on given sets of indicators of compromise (IOCs) indexed by a se…☆70Mar 9, 2015Updated 11 years ago
- Miscellaneous Scripts☆17Sep 11, 2020Updated 5 years ago
- Script for generating Bro intel files from pdf or html reports☆77Dec 7, 2015Updated 10 years ago
- Kernel mode driver loader, injecting into the windows kernel, Rootkit. Driver injections.☆47Nov 9, 2014Updated 11 years ago
- xLCB plugin for x64dbg☆20Oct 4, 2016Updated 9 years ago
- Quick Irssi script that redirects mentions and PMs to Pushbullet☆11Oct 16, 2016Updated 9 years ago
- it's a simple LKM rootkit.☆12Aug 2, 2016Updated 9 years ago
- finals-2014☆20Nov 15, 2016Updated 9 years ago
- Python Module for creating Log Event Extended Format events for IBM QRadar☆12Jun 4, 2016Updated 9 years ago
- A warehouse for your malware☆136Nov 21, 2025Updated 3 months ago
- NaCl wrapper; uses `sodium` for the server-side and `tweetnacl-js` for the client☆22Oct 27, 2023Updated 2 years ago
- ssdeep based clustering tool☆14Jan 17, 2016Updated 10 years ago