Visit Website

RegRippy is a framework for reading and extracting useful forensics data from Windows registry hives, developed in modern Python 3 as an alternative to RegRipper. It utilizes William Ballenthin's python-registry to access the raw registry hives, aiming to provide a framework for developing plugins in an incident response scenario.

FEATURES

ALTERNATIVES

A recognition framework for identifying products, services, operating systems, and hardware by matching fingerprints against network probes.

A modified version of GNU dd with added features like hashing and fast disk wiping.

Automated tool for parsing Windows registry hives and extracting valuable information for forensic analysis.

A collaborative forensic timeline analysis tool for organizing and analyzing data with rich annotations and comments.

A Cross-Platform Forensic Framework for Google Chrome that allows investigation of history, downloads, bookmarks, cookies, and provides a full report.

ShadowCopy Analyzer is a tool for cybersecurity researchers to analyze and utilize the ShadowCopy technology for file recovery and system restoration.

A free, open-source file data recovery software that can recover lost files from hard disks, CD-ROMs, and digital camera memory.

A comprehensive incident response tool for Windows computers, providing advanced memory forensics and access to locked systems.

CyberSecTools logoCyberSecTools

Explore the largest curated directory of cybersecurity tools and resources to enhance your security practices. Find the right solution for your domain.

Copyright © 2024 - All rights reserved