Pinned Repositories
acquire
acquire is a tool to quickly gather forensic artifacts from disk images or a live system into a lightweight container.
aria2-onion-downloader
Download from .onion-domains more quickly.
block-parser
Parser for Windows PowerShell script block logs
chainsaw
Rapidly Search and Hunt through Windows Forensic Artefacts
evtx
C# based evtx parser with lots of extras
KapeFiles
This repository serves as a place for community created Targets and Modules for use with KAPE.
pdfium-binaries
📰 Binary distribution of PDFium
RECmd
Command line access to the Registry
sidr
Search Index Database Reporter
reece394's Repositories
reece394/chainsaw
Rapidly Search and Hunt through Windows Forensic Artefacts
reece394/acquire
acquire is a tool to quickly gather forensic artifacts from disk images or a live system into a lightweight container.
reece394/aria2-onion-downloader
Download from .onion-domains more quickly.
reece394/block-parser
Parser for Windows PowerShell script block logs
reece394/evtx
C# based evtx parser with lots of extras
reece394/KapeFiles
This repository serves as a place for community created Targets and Modules for use with KAPE.
reece394/pdfium-binaries
📰 Binary distribution of PDFium
reece394/RECmd
Command line access to the Registry
reece394/sidr
Search Index Database Reporter
reece394/JumpList
reece394/Lnk
Lnk file parser
reece394/mft
A parser for the MFT (Master File Table) format
reece394/MFT-1
MFT parser
reece394/OleCf
Library to process OLE compound file format. This is a work in progress and was initially written for jumplist parsing (for which it does fine)
reece394/RBCmd
Recycle bin artifact parser
reece394/RecentFileCacheParser
Parses RecentFileCacheParser.bcf files
reece394/SQLECmd
reece394/WxTCmd