libevt
libevt is a library to access and parse Windows Event Log (EVT) files.
RegRippy is a framework for reading and extracting useful forensics data from Windows registry hives, developed in modern Python 3 as an alternative to RegRipper. It utilizes William Ballenthin's python-registry to access the raw registry hives, aiming to provide a framework for developing plugins in an incident response scenario.
libevt is a library to access and parse Windows Event Log (EVT) files.
GVfs is a userspace virtual filesystem implementation for GIO with various backends and features.
A file search and query tool for ops and security experts.
A script to extract subdomains/emails for a given domain using SSL/TLS certificate dataset on Censys.
Dump the contents of the location database files on iOS and macOS with output options like KML and CSV.
An anti-forensic Linux Kernel Module kill-switch for USB ports.