Top Alternatives to libregf
Security OperationsLooking for alternatives to libregf? A library for accessing and parsing Windows NT Registry File (REGF) format files, designed for digital forensics and registry analysis applications. Browse 12 similar Security Operations tools below, compare features side-by-side, and find the best fit for your security stack.
12 Alternatives to libregf
A digital forensics tool that extracts and analyzes Windows AppCompat and AmCache registry data for enterprise-scale forensic investigations.
libevt is a library to access and parse Windows Event Log (EVT) files.
Unfurl is a URL analysis tool that extracts and visualizes data from URLs, breaking them down into components and presenting the information visually.
A library for accessing and parsing OLE 2 Compound File (OLECF) format files, including Microsoft Office documents and thumbs.db files.
A library to access and parse Windows Shortcut File (LNK) format.
A Windows Registry hive extraction library that provides C API access for reading and writing registry binary files with XML export capabilities.
An open source tool that generates YARA rules from installed software on running operating systems for efficient software identification in digital forensic investigations.
wxHexEditor is a free cross-platform hex editor and disk editor for editing binary files, disk devices, and logical drives with data manipulation and checksum calculation features.
RegRippy is a modern Python 3 alternative to RegRipper for extracting data from Windows registry hives.
A declarative language for describing binary data structures that compiles into parsers for multiple programming languages.
A PowerShell-based DFIR automation tool that streamlines artifact and evidence collection from Windows machines for digital forensic investigations.
A pure Python parser for Windows Event Log (.evtx) files that enables cross-platform forensic analysis of Windows system events.
