From 80462afb61af86e3713dec82310ed1795f64f4c7 Mon Sep 17 00:00:00 2001
From: pe3zx <pe3zx@users.noreplay.github.com>
Date: Thu, 15 Feb 2018 23:43:26 +0700
Subject: [PATCH] [Tools][Digital Forensics and Incident Response]
 williballenthin/INDXParse

---
 README.md | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/README.md b/README.md
index 7ef608c..a0e2762 100644
--- a/README.md
+++ b/README.md
@@ -854,6 +854,10 @@ My curated list of awesome links, resources and tools
             This is a GUI (for Windows 64 bit) for a procedure to virtualize your EWF(E01), DD(Raw), AFF disk image file without converting it, directly with VirtualBox, forensically proof.
         </td>
     </tr>
+    <tr>
+        <td><a href="https://github.com/williballenthin/INDXParse">williballenthin/INDXParse</a></td>
+        <td>Tool suite for inspecting NTFS artifacts</td>
+    </tr>
     <tr>
         <td>
             <a href="https://github.com/nshalabi/SysmonTools">nshalabi/SysmonTools</a>