liblnk is a library to access the Windows Shortcut File (LNK) format. It provides a way to read and parse LNK files, with planned features including data block support, shell item support, and multi-threading support. The library is currently in alpha status and is licensed under LGPLv3+.
FEATURES
ALTERNATIVES
Documentation project for Digital Forensics Artifact Repository
DFIR ORC Documentation provides detailed instructions for setting up the build environment and deploying the tool.
No More Ransom is a collaborative project to combat ransomware attacks by providing decryption tools and prevention advice.
A high-performance digital forensics exploitation tool for extracting structured information from various inputs without parsing file system structures.
A library and tools for accessing and analyzing Linux Logical Volume Manager (LVM) volume system format.
Exiv2 is a C++ library and command-line utility for image metadata manipulation.
Recover event log entries from an image by heuristically looking for record structures.
A tool with advanced filtering capabilities for analyzing events based on time, path, weekday, and date.
PINNED

InfoSecHired
An AI-powered career platform that automates the creation of cybersecurity job application materials and provides company-specific insights for job seekers.

Mandos Brief Newsletter
A weekly newsletter providing cybersecurity leadership insights, industry updates, and strategic guidance for security professionals advancing to management positions.

CTIChef.com Detection Feeds
A tiered cyber threat intelligence service providing detection rules from public repositories with varying levels of analysis, processing, and guidance for security teams.

ImmuniWeb® Discovery
ImmuniWeb Discovery is an attack surface management platform that continuously monitors an organization's external digital assets for security vulnerabilities, misconfigurations, and threats across domains, applications, cloud resources, and the dark web.

Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.

Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.

DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.