Willi Ballenthin

Results 23 repositories owned by


Willi Ballenthin

LfLe

Stars

Forks

Watchers

Recover event log entries from an image by heurisitically looking for record structures.

williballenthin

process-forest

143

Stars

Forks

Watchers

Reconstruct process trees from event logs

williballenthin

python-dotnet-binaryformat

Stars

Forks

Watchers

Pure Python parser for data encoded by .NET's BinaryFormatter

williballenthin

python-evt

Stars

Forks

Watchers

Pure Python parser for classic Windows Event Log files (.evt)

williballenthin

python-idb

445

Stars

111

Forks

Watchers

Pure Python parser and analyzer for IDA Pro database files (.idb).

williballenthin

python-ntfs

Stars

Forks

Watchers

Open source Python library for NTFS analysis

williballenthin

python-registry

416

Stars

102

Forks

Watchers

Pure Python parser for Windows Registry hives.

williballenthin

python-sdb

102

Stars

Forks

Watchers

Pure Python parser for Application Compatibility Shim Databases (.sdb files)

williballenthin

python-vb

Stars

Forks

Watchers

analysis of visual basic code

williballenthin

shellbags

147

Stars

Forks

Watchers

Cross-platform, open-source shellbag parser

williballenthin