From 8031dec238363600a8009b304fa2a770928ae82d Mon Sep 17 00:00:00 2001
From: Mathias Stuhlmacher <mathias.stuhlmacher@gmx.de>
Date: Mon, 11 Oct 2021 19:04:58 +0200
Subject: [PATCH] added MFT browser

---
 README.md | 1 +
 1 file changed, 1 insertion(+)

diff --git a/README.md b/README.md
index 9c0a745..d156d7c 100644
--- a/README.md
+++ b/README.md
@@ -205,6 +205,7 @@ Digital Forensics and Incident Response (DFIR) teams are groups of people in an
 * [Hostintel](https://github.com/keithjjones/hostintel) - Pull intelligence per host.
 * [imagemounter](https://github.com/ralphje/imagemounter) - Command line utility and Python package to ease the (un)mounting of forensic disk images.
 * [Kansa](https://github.com/davehull/Kansa/) - Modular incident response framework in PowerShell.
+* [MFT Browser](https://github.com/kacos2000/MFT_Browser) - MFT directory tree reconstruction & record info.
 * [Munin](https://github.com/Neo23x0/munin) - Online hash checker for VirusTotal and other services.
 * [PowerSponse](https://github.com/swisscom/PowerSponse) - PowerSponse is a PowerShell module focused on targeted containment and remediation during security incident response.
 * [PyaraScanner](https://github.com/nogoodconfig/pyarascanner) - Very simple multi-threaded many-rules to many-files YARA scanning Python script for malware zoos and IR.