Autopsy Module to analyze Registry Hives based on bookmarks provided by EricZimmerman for his tool RegistryExplorer

Last update: Mar 31, 2022

Related tags

Data Analysis Autopsy-Registry-Explorer

Overview

Autopsy-Registry-Explorer

Autopsy Module to analyze Registry Hives based on bookmarks provided by EricZimmerman for his tool RegistryExplorer

Specification

Tested Autopsy version: 4.19.3
OS's supported on: Windows
License: GNU General Public License Version 3

Features

Analyse Registry hives based on bookmarks provided by EricZimmerman
Ability to analyze registry hives independently without the need to load a full disk image
Categorize Keys according to their usage

Screenshot

Installation

git clone https://github.com/0xMohammed/Autopsy-Registry-Explorer.git
copy Module folder to 'C:\Users\{Username}\AppData\Roaming\autopsy\python_modules'

TO-DO

Add Transaction logs analysis

Refrences

Autopsy discussion group
Sleuthkit API Reference
Python Registry Parser

You might also like...

ForecastGA is a Python tool to forecast Google Analytics data using several popular time series models.

ForecastGA is a tool that combines a couple of popular libraries, Atspy and googleanalytics, with a few enhancements.

36 Jan 3, 2023

Flenser is a simple, minimal, automated exploratory data analysis tool.

Flenser Have you ever been handed a dataset you've never seen before? Flenser is a simple, minimal, automated exploratory data analysis tool. It runs

79 Sep 20, 2022

a tool that compiles a csv of all h1 program stats

h1stats - h1 Program Stats Scraper This python3 script will call out to HackerOne's graphql API and scrape all currently active programs for informati

40 Oct 27, 2022

fds is a tool for Data Scientists made by DAGsHub to version control data and code at once.

Fast Data Science, AKA fds, is a CLI for Data Scientists to version control data and code at once, by conveniently wrapping git and dvc

359 Dec 22, 2022

Conduits - A Declarative Pipelining Tool For Pandas

Conduits - A Declarative Pipelining Tool For Pandas Traditional tools for declaring pipelines in Python suck. They are mostly imperative, and can some

7 Nov 21, 2021

ELFXtract is an automated analysis tool used for enumerating ELF binaries

ELFXtract ELFXtract is an automated analysis tool used for enumerating ELF binaries Powered by Radare2 and r2ghidra This is specially developed for PW

49 Nov 28, 2022

This tool parses log data and allows to define analysis pipelines for anomaly detection.

logdata-anomaly-miner This tool parses log data and allows to define analysis pipelines for anomaly detection. It was designed to run the analysis wit

32 Nov 27, 2022

cLoops2: full stack analysis tool for chromatin interactions

cLoops2: full stack analysis tool for chromatin interactions Introduction cLoops2 is an extension of our previous work, cLoops. From loop-calling base

25 Dec 14, 2022

Unsub is a collection analysis tool that assists libraries in analyzing their journal subscriptions.

About Unsub is a collection analysis tool that assists libraries in analyzing their journal subscriptions. The tool provides rich data and a summary g

9 Nov 16, 2022

Releases(v0.2Beta)

v0.2Beta(Feb 6, 2022)
New Features:

Transaction logs analysis and determine whether the Registry Hive is dirty or not.

Source code(tar.gz)
Source code(zip)
RegistryExplorerv0.2Beta.zip(10.03 MB)
v0.1Beta(Feb 5, 2022)

Source code(tar.gz)
Source code(zip)
RegistryExplorerv0.1Beta.zip(6.42 MB)

Owner

Mohammed Hassan

Security engineer @Cyberdefenders | DFIR

GitHub Repository

Airflow ETL With EKS EFS Sagemaker

Airflow ETL With EKS EFS & Sagemaker (en desarrollo) Diagrama de la solución Imp

1 Feb 14, 2022

Developed for analyzing the covariance for OrcVIO

about This repo is developed for analyzing the covariance for OrcVIO environment setup platform ubuntu 18.04 using conda conda env create --file envir

1 Dec 08, 2021

track your GitHub statistics

GitHub-Stalker track your github statistics 👀 features find new followers or unfollowers find who got a star on your project or remove stars find who

34 Nov 18, 2022

Show you how to integrate Zeppelin with Airflow

Introduction This repository is to show you how to integrate Zeppelin with Airflow. The philosophy behind the ingtegration is to make the transition f

11 Dec 30, 2022

A data analysis using python and pandas to showcase trends in school performance.

A data analysis using python and pandas to showcase trends in school performance. A data analysis to showcase trends in school performance using Panda

0 Sep 07, 2021

WithPipe is a simple utility for functional piping in Python.

A utility for functional piping in Python that allows you to access any function in any scope as a partial.

1 Oct 26, 2021

SNV calling pipeline developed explicitly to process individual or trio vcf files obtained from Illumina based pipeline (grch37/grch38).

SNV Pipeline SNV calling pipeline developed explicitly to process individual or trio vcf files obtained from Illumina based pipeline (grch37/grch38).

1 Nov 02, 2021

Python utility to extract differences between two pandas dataframes.

8 Jan 07, 2023

Fit models to your data in Python with Sherpa.

Table of Contents Sherpa License How To Install Sherpa Using Anaconda Using pip Building from source History Release History Sherpa Sherpa is a modeli

134 Jan 07, 2023

A neural-based binary analysis tool

A neural-based binary analysis tool Introduction This directory contains the demo of a neural-based binary analysis tool. We test the framework using

208 Dec 22, 2022

Using Python to scrape some basic player information from www.premierleague.com and then use Pandas to analyse said data.

PremiershipPlayerAnalysis Using Python to scrape some basic player information from www.premierleague.com and then use Pandas to analyse said data. No

5 Sep 06, 2021

ToeholdTools is a Python package and desktop app designed to facilitate analyzing and designing toehold switches, created as part of the 2021 iGEM competition.

ToeholdTools Category Status Repository Package Build Quality A library for the analysis of toehold switch riboregulators created by the iGEM team Cit

0 Dec 01, 2021

Autopsy Module to analyze Registry Hives based on bookmarks provided by EricZimmerman for his tool RegistryExplorer

Related tags

Overview

Autopsy-Registry-Explorer

Specification

Features

Screenshot

Installation

TO-DO

Refrences

You might also like...

ForecastGA is a Python tool to forecast Google Analytics data using several popular time series models.

Flenser is a simple, minimal, automated exploratory data analysis tool.

a tool that compiles a csv of all h1 program stats

fds is a tool for Data Scientists made by DAGsHub to version control data and code at once.

Conduits - A Declarative Pipelining Tool For Pandas

ELFXtract is an automated analysis tool used for enumerating ELF binaries

This tool parses log data and allows to define analysis pipelines for anomaly detection.

cLoops2: full stack analysis tool for chromatin interactions

Unsub is a collection analysis tool that assists libraries in analyzing their journal subscriptions.

Releases(v0.2Beta)

v0.2Beta(Feb 6, 2022)

New Features:

v0.1Beta(Feb 5, 2022)

Owner

Mohammed Hassan

Airflow ETL With EKS EFS Sagemaker

Developed for analyzing the covariance for OrcVIO

track your GitHub statistics

Show you how to integrate Zeppelin with Airflow

A data analysis using python and pandas to showcase trends in school performance.

WithPipe is a simple utility for functional piping in Python.

SNV calling pipeline developed explicitly to process individual or trio vcf files obtained from Illumina based pipeline (grch37/grch38).

Python utility to extract differences between two pandas dataframes.

Fit models to your data in Python with Sherpa.

A neural-based binary analysis tool

Using Python to scrape some basic player information from www.premierleague.com and then use Pandas to analyse said data.

ToeholdTools is a Python package and desktop app designed to facilitate analyzing and designing toehold switches, created as part of the 2021 iGEM competition.

Pip install minimal-pandas-api-for-polars

Catalogue data - A Python Scripts to prepare catalogue data

Python dataset creator to construct datasets composed of OpenFace extracted features and Shimmer3 GSR+ Sensor datas

Detecting Underwater Objects (DUO)

A Python package for modular causal inference analysis and model evaluations

Pypeln is a simple yet powerful Python library for creating concurrent data pipelines.

Time ranges with python

CRISP: Critical Path Analysis of Microservice Traces