Awesome-Mirrors/awesome-malware-analysis
1
0
Fork 0
mirror of https://github.com/rshipp/awesome-malware-analysis.git synced 2024-10-01 06:35:40 -04:00
Code Issues Packages Projects Releases Wiki Activity

Add @williballenthin EVTXtract and python libs

Browse Source
This commit is contained in:
rshipp 2015-05-09 16:35:00 -06:00
parent 14f842b591
commit bce5ea7566
1 changed files with 6 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
README.md
View File

@ -216,6 +216,8 @@ the [browser malware](#browser-malware) section.*
* [bulk_extractor](https://github.com/simsong/bulk_extractor) - Fast file * [bulk_extractor](https://github.com/simsong/bulk_extractor) - Fast file
carving tool. carving tool.
* [EVTXtract](https://github.com/williballenthin/EVTXtract) - Carve Windows
Event Log files from raw binary data.
* [Foremost](http://foremost.sourceforge.net/) - File carving tool designed * [Foremost](http://foremost.sourceforge.net/) - File carving tool designed
by the US Air Force. by the US Air Force.
* [Hachoir](https://bitbucket.org/haypo/hachoir) - A collection of Python * [Hachoir](https://bitbucket.org/haypo/hachoir) - A collection of Python
@ -299,6 +301,10 @@ the [browser malware](#browser-malware) section.*
## Windows Artifacts ## Windows Artifacts
* [python-evt](https://github.com/williballenthin/python-evt) - Python
library for parsing Windows Event Logs.
* [python-registry](http://www.williballenthin.com/registry/) - Python
library for parsing registry files.
* [RegRipper](https://regripper.wordpress.com/) * [RegRipper](https://regripper.wordpress.com/)
([GitHub](https://github.com/keydet89/RegRipper2.8)) - ([GitHub](https://github.com/keydet89/RegRipper2.8)) -
Plugin-based registry analysis tool. Plugin-based registry analysis tool.