RegRippy Logo

RegRippy

0
Free
Visit Website

RegRippy is a framework for reading and extracting useful forensics data from Windows registry hives, developed in modern Python 3 as an alternative to RegRipper. It utilizes William Ballenthin's python-registry to access the raw registry hives, aiming to provide a framework for developing plugins in an incident response scenario.

FEATURES

ALTERNATIVES

Free software for extracting Microsoft cabinet files, supporting all features and formats of Microsoft cabinet files and Windows CE installation files.

iOS Mobile Backup Xtractor tool for extracting iOS backups.

Open source Python library for NTFS analysis

A tool for analyzing pentest screenshots using a convolutional neural network

A command line utility for managing volume shadow copies with capabilities for evasion, persistence, and file extraction.

A command-line tool for extracting detailed information from JPEG files, including image dimensions, compression, and metadata.

A software that collects forensic artifacts on systems for forensic investigations.

GUI-based memory forensic capture tool for cyber forensics and cyber crime investigation.