ydkhatri/OneDrive external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

ydkhatri/OneDrive

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/ydkhatri/OneDrive)

Close

ydkhatri / OneDriveView on GitHubMore

• External links
• Readme badge

OneDrive log .ODL reader

☆161Nov 3, 2024Updated last year

Alternatives and similar repositories for OneDrive

Users that are interested in OneDrive are comparing it to the libraries listed below

• 00010111 / gMetaDataParse

  View on GitHub
  ☆24Mar 12, 2025Updated last year
• ArsenalRecon / SdbaParser

  View on GitHub
  Parser for Sdba memory pool tags
  ☆21Jul 16, 2021Updated 4 years ago
• net-protect / google-fs-recover

  View on GitHub
  Google Filestream Forensic Tool
  ☆22Mar 10, 2022Updated 4 years ago
• Beercow / OneDriveExplorer

  View on GitHub
  OneDriveExplorer is a command line and GUI based application for reconstructing the folder structure of OneDrive from the <UserCid>.dat a…
  ☆229Jan 6, 2026Updated 2 months ago
• bgrundy / cheatsheets-forensic

  View on GitHub
  Forensic cheatsheets for use with cheat
  ☆15Dec 2, 2021Updated 4 years ago
• moaistory / WinSearchDBAnalyzer

  View on GitHub
  http://moaistory.blogspot.com/2018/10/winsearchdbanalyzer.html
  ☆127Jul 20, 2024Updated last year
• kacos2000 / WinEDB

  View on GitHub
  Windows.EDB Browser
  ☆60Mar 6, 2023Updated 3 years ago
• cclgroupltd / chrome-profile-view

  View on GitHub
  Python web app for previewing data in a Chrome Profile Folder
  ☆24Jul 1, 2024Updated last year
• csababarta / memory-baseliner

  View on GitHub
  Memory Baseliner is a script that can compare two windows memory images or perform frequency of occurrence / data stacking analysis on mu…
  ☆56Jul 2, 2023Updated 2 years ago
• theAtropos4n6 / Partition-4DiagnosticParser

  View on GitHub
  Windows Event Log "Microsoft-Windows-Partition%4Diagnostic.evtx" parser and devices' VSNs extractor.
  ☆20Nov 28, 2023Updated 2 years ago
• khyrenz / parseusbs

  View on GitHub
  Parses USB connection artifacts from offline Registry hives
  ☆107Feb 8, 2026Updated last month
• forensicxlab / volatility3_plugins

  View on GitHub
  ☆25Jul 23, 2024Updated last year
• AmgdGocha / DriveFS-Sleuth

  View on GitHub
  DriveFS Sleuth is a Python tool that automates investigating Google Drive File Stream disk artifacts, the tool has been developed based o…
  ☆88Dec 20, 2024Updated last year
• strozfriedberg / sidr

  View on GitHub
  Search Index Database Reporter
  ☆131Oct 28, 2025Updated 4 months ago
• CyberCX-DFIR / usnjrnl_rewind

  View on GitHub
  USN Journal full path builder
  ☆67Sep 16, 2024Updated last year
• AbdulRhmanAlfaifi / CryptnetURLCacheParser

  View on GitHub
  CryptnetURLCacheParser is a tool to parse CryptAPI cache files
  ☆21Aug 3, 2024Updated last year
• strozfriedberg / notatin

  View on GitHub
  A Windows registry file parser written in Rust
  ☆41Oct 30, 2025Updated 4 months ago
• ydkhatri / jarp

  View on GitHub
  Just Another broken Registry Parser (JARP)
  ☆16May 23, 2024Updated last year
• AndrewRathbun / Anti-Forensics-VHDX

  View on GitHub
  A sample VHDX file with multiple verbose examples of forensic and anti-forensics artifacts. Meant to be basic and can be expanded upon. P…
  ☆27Jan 2, 2023Updated 3 years ago
• brimorlabs / KStrike

  View on GitHub
  Stand-alone parser for User Access Logging from Server 2012 and newer systems
  ☆79Jan 9, 2024Updated 2 years ago
• jklepsercyber / defender-detectionhistory-parser

  View on GitHub
  A parser of Windows Defender's DetectionHistory forensic artifact, containing substantial info about quarantined files and executables.
  ☆117Jan 26, 2022Updated 4 years ago
• brimorlabs / rdpieces

  View on GitHub
  The home of the BriMor Labs rdpieces Perl script that tries to rebuild parsed RDP Bitmap Cache images
  ☆89Aug 29, 2023Updated 2 years ago
• tedhardyMSFT / EventLogUtilities

  View on GitHub
  Set of utilities for getting information about Windows Events
  ☆15Jun 5, 2018Updated 7 years ago
• iamhunggy / StickyParser

  View on GitHub
  StickyParser - Sticky Notes Forensic. A Windows Sticky Notes Praser (snt and plum.sqlite supported). Additional Feature: SQLite Recovery …
  ☆21Jul 18, 2023Updated 2 years ago
• dwmetz / Axiom-PowerShell

  View on GitHub
  PowerShell scripts to aid investigators when utilizing O365 and Magnet Axiom.
  ☆12Aug 26, 2024Updated last year
• AbdulRhmanAlfaifi / Fennec

  View on GitHub
  Artifact collection tool for *nix systems
  ☆213Mar 20, 2024Updated 2 years ago
• MarkBaggett / ese-analyst

  View on GitHub
  This is a set of tools for doing forensics analysis on Microsoft ESE databases.
  ☆129Jan 31, 2022Updated 4 years ago
• kacos2000 / Evtx_Log_Browser

  View on GitHub
  Evtx Log (xml) Browser
  ☆56Mar 12, 2023Updated 3 years ago
• DCScoder / ESXiTri

  View on GitHub
  ESXi Cyber Security Incident Response Script
  ☆25Sep 4, 2024Updated last year
• elastic / sans-dfir-2022

  View on GitHub
  Repo with supporting material for the talk titled "Cracking the Beacon: Automating the extraction of implant configurations"
  ☆11Feb 6, 2025Updated last year
• jsa2 / aadcookiespoof

  View on GitHub
  Azure AD Identity Protection Cookie Spoofing
  ☆36Sep 2, 2023Updated 2 years ago
• JPCERTCC / jpcert-yara

  View on GitHub
  JPCERT/CC public YARA rules repository
  ☆109Mar 9, 2026Updated last week
• JPCERTCC / Windows-Symbol-Tables

  View on GitHub
  Windows symbol tables for Volatility 3
  ☆93Jul 11, 2024Updated last year
• dwmetz / Mal-Hash

  View on GitHub
  This script will generate hashes (MD5, SHA1, SHA256), submit the MD5 to Virus Total, and produce a text file with the results.
  ☆15Jul 13, 2023Updated 2 years ago
• laciKE / EsetLogParser

  View on GitHub
  Python script for parsing ESET (NOD32) virlog.dat file.
  ☆14Sep 28, 2017Updated 8 years ago
• fireeye / BitsParser

  View on GitHub
  ☆152Jun 5, 2024Updated last year
• google / hashr

  View on GitHub
  ☆129Feb 19, 2026Updated last month
• cclgroupltd / mister-skinnylegs

  View on GitHub
  mister-skinnylegs is an open plugin framework for parsing website/webapp artifacts in browser data. It currently provides a command line …
  ☆19Nov 14, 2025Updated 4 months ago
• ANSSI-FR / bits_parser

  View on GitHub
  Extract BITS jobs from QMGR queue and store them as CSV records
  ☆74Feb 13, 2025Updated last year