yarox24 / evtkitLinks
Fix acquired .evt - Windows Event Log files (Forensics)
☆19Updated 9 years ago
Alternatives and similar repositories for evtkit
Users that are interested in evtkit are comparing it to the libraries listed below
Sorting:
- Fast Evidence Collector Toolkit is an incident response toolkit to collect evidences on a suspicious windows computer☆42Updated 5 years ago
- A GC link parser for both linkfiles and jumplists.☆18Updated 8 years ago
- Parses Java Cache IDX files☆39Updated 7 years ago
- Crack your macros like the math pros.☆33Updated 8 years ago
- Plugins to add funtionality to ProcDOT. http://www.procdot.com☆23Updated last year
- Comprehensive Pivoting Framework☆20Updated 9 years ago
- Python tool and library to help analyze files during malware triage and analysis.☆78Updated 5 years ago
- Various snippets created during malware analysis☆22Updated 7 years ago
- Force-Directed Graph Generator for Volatility Ouputs☆26Updated 6 years ago
- Threat Intel and Incident Reponse☆10Updated 7 years ago
- onigiri - remote malware triage script☆24Updated 9 years ago
- Server for receiving autorun data from the clients☆13Updated 7 years ago
- Checks observables/ioc in TheHive/Cortex against the MISP warningslists☆14Updated 7 years ago
- Tools for parsing Forensic images☆41Updated 6 years ago
- Based on the Volatility framework, this script will run various plugins as well as create a timeline, or use YARA/ClamAV/VirusTotal to fi…☆48Updated 8 years ago
- Fast incident overview☆40Updated 8 years ago
- ☆16Updated 10 years ago
- An Incident Response tool that visualizes historic process execution evidence (based on Event ID 4688 - Process Creation Event) in a tree…☆60Updated 7 years ago
- Yara intergrated into BurpSuite☆48Updated 9 years ago
- Event Log Analysis Tools☆29Updated 8 years ago
- Work Fast With the pattern matching swiss knife for malware researchers.☆38Updated 9 years ago
- Some dfir stuff☆31Updated 3 years ago
- Open Development projects for TekDefense☆77Updated 8 years ago
- DocBleachShell is the integration of the great DocBleach, https://github.com/docbleach/DocBleach Content Disarm and Reconstruction tool i…☆21Updated 3 years ago
- Talk given at DerbyCon and RuxCon 2016☆22Updated 8 years ago
- Sandbox feature upgrade with the help of wrapped samples☆76Updated 7 years ago
- Shows command lines used by latest instances analyzed on Hybrid-Analysis☆43Updated 7 years ago
- Various Modules & Scripts for use with Viper Framework☆27Updated 6 years ago
- Tool for analysts to perform simultaneous lookups (IP, Domain, URL, MD5) against multiple data sources☆29Updated 8 years ago
- An offensive Powershell console☆30Updated 9 years ago