Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
https://github.com/kacos2000/MFT_Record_Viewer
$MFT Record Viewer
mft powershell viewer windows windows-forms windows10 winforms-application x64
Last synced: 17 Jun 2024
https://github.com/kero99/mftmactime
MFT and USN parser that allows direct extraction in filesystem timeline format (mactime), dump all resident files in the MFT in their original folder structure and run yara rules over them all.
forensics-tools mft ntfs ntfs-ads ntfs-journal python
Last synced: 26 May 2024
https://github.com/AdamWhiteHat/Judge-Jury-and-Executable
A file system forensics analysis scanner and threat hunting tool. Scans file systems at the MFT and OS level and stores data in SQL, SQLite or CSV. Threats and data can be probed harnessing the power and syntax of SQL.
antivirus csharp forensic-analysis forensics forensics-investigations forensics-level-scanning mft query-language scanner security threat-hunting threat-monitor yara yara-rules yara-scanner
Last synced: 01 May 2024
https://github.com/kacos2000/MFT_Browser
$MFT directory tree reconstruction & FILE record info
carve carver directory-tree extract file gui gui-application metadata-information mft mft-browser mft-files ntfs powershell record signed winform
Last synced: 14 Apr 2024
https://github.com/EricZimmerman/MFTECmd
Parses $MFT from NTFS file systems
Last synced: 02 Apr 2024
