Willi Ballenthin

icon indicating a website link http://www.williballenthin.com/ icon indicating an email [email protected]

icon company @mandiant icon location /usr/bin/nethack

Results 23 repositories owned by Willi Ballenthin

python-evtx

680
Stars
163
Forks
Watchers

Pure Python parser for Windows Event Log files (.evtx)

verified publisher icon williballenthin

EVTXtract

171
Stars
24
Forks
Watchers

EVTXtract recovers and reconstructs fragments of EVTX log files from raw binary data, including unallocated space and memory images.

verified publisher icon williballenthin

lancelot

92
Stars
12
Forks
Watchers

intel x86(-64) code analysis library that reconstructs control flow

verified publisher icon williballenthin

Autopsy-WindowsRegistryContentViewer

15
Stars
13
Forks
Watchers

no longer maintained

verified publisher icon williballenthin

go-reversing

40
Stars
3
Forks
Watchers

Resources for reverse engineering Go binaries

verified publisher icon williballenthin

govt

64
Stars
24
Forks
Watchers

Virustotal API for Go

verified publisher icon williballenthin

ida-netnode

73
Stars
17
Forks
Watchers

Humane API for storing and accessing persistent data in IDA Pro databases

verified publisher icon williballenthin

ida-settings

20
Stars
11
Forks
Watchers

Fetch and set configuration values from IDAPython scripts

verified publisher icon williballenthin

idawilli

107
Stars
28
Forks
Watchers

IDA Pro resources, scripts, and configurations

verified publisher icon williballenthin

INDXParse

201
Stars
43
Forks
Watchers

Tool suite for inspecting NTFS artifacts.

verified publisher icon williballenthin