Autopsy Module to analyze Registry Hives based on bookmarks provided by EricZimmerman for his tool RegistryExplorer

Last update: Mar 31, 2022

Related tags

Data Analysis Autopsy-Registry-Explorer

Overview

Autopsy-Registry-Explorer

Autopsy Module to analyze Registry Hives based on bookmarks provided by EricZimmerman for his tool RegistryExplorer

Specification

Tested Autopsy version: 4.19.3
OS's supported on: Windows
License: GNU General Public License Version 3

Features

Analyse Registry hives based on bookmarks provided by EricZimmerman
Ability to analyze registry hives independently without the need to load a full disk image
Categorize Keys according to their usage

Screenshot

Installation

git clone https://github.com/0xMohammed/Autopsy-Registry-Explorer.git
copy Module folder to 'C:\Users\{Username}\AppData\Roaming\autopsy\python_modules'

TO-DO

Add Transaction logs analysis

Refrences

Autopsy discussion group
Sleuthkit API Reference
Python Registry Parser

You might also like...

ForecastGA is a Python tool to forecast Google Analytics data using several popular time series models.

ForecastGA is a tool that combines a couple of popular libraries, Atspy and googleanalytics, with a few enhancements.

36 Jan 3, 2023

Flenser is a simple, minimal, automated exploratory data analysis tool.

Flenser Have you ever been handed a dataset you've never seen before? Flenser is a simple, minimal, automated exploratory data analysis tool. It runs

79 Sep 20, 2022

a tool that compiles a csv of all h1 program stats

h1stats - h1 Program Stats Scraper This python3 script will call out to HackerOne's graphql API and scrape all currently active programs for informati

40 Oct 27, 2022

fds is a tool for Data Scientists made by DAGsHub to version control data and code at once.

Fast Data Science, AKA fds, is a CLI for Data Scientists to version control data and code at once, by conveniently wrapping git and dvc

359 Dec 22, 2022

Conduits - A Declarative Pipelining Tool For Pandas

Conduits - A Declarative Pipelining Tool For Pandas Traditional tools for declaring pipelines in Python suck. They are mostly imperative, and can some

7 Nov 21, 2021

ELFXtract is an automated analysis tool used for enumerating ELF binaries

ELFXtract ELFXtract is an automated analysis tool used for enumerating ELF binaries Powered by Radare2 and r2ghidra This is specially developed for PW

49 Nov 28, 2022

This tool parses log data and allows to define analysis pipelines for anomaly detection.

logdata-anomaly-miner This tool parses log data and allows to define analysis pipelines for anomaly detection. It was designed to run the analysis wit

32 Nov 27, 2022

cLoops2: full stack analysis tool for chromatin interactions

cLoops2: full stack analysis tool for chromatin interactions Introduction cLoops2 is an extension of our previous work, cLoops. From loop-calling base

25 Dec 14, 2022

Unsub is a collection analysis tool that assists libraries in analyzing their journal subscriptions.

About Unsub is a collection analysis tool that assists libraries in analyzing their journal subscriptions. The tool provides rich data and a summary g

9 Nov 16, 2022

Releases(v0.2Beta)

v0.2Beta(Feb 6, 2022)
New Features:

Transaction logs analysis and determine whether the Registry Hive is dirty or not.

Source code(tar.gz)
Source code(zip)
RegistryExplorerv0.2Beta.zip(10.03 MB)
v0.1Beta(Feb 5, 2022)

Source code(tar.gz)
Source code(zip)
RegistryExplorerv0.1Beta.zip(6.42 MB)

Owner

Mohammed Hassan

Security engineer @Cyberdefenders | DFIR

GitHub Repository

Includes all files needed to satisfy hw02 requirements

HW 02 Data Sets Mean Scale Score for Asian and Hispanic Students, Grades 3 - 8 This dataset provides insights into the New York City education system

7 Oct 28, 2021

Mining the Stack Overflow Developer Survey

Mining the Stack Overflow Developer Survey A prototype data mining application to compare the accuracy of decision tree and random forest regression m

1 Nov 16, 2021

Snakemake workflow for converting FASTQ files to self-contained CRAM files with maximum lossless compression.

Snakemake workflow: name A Snakemake workflow for description Usage The usage of this workflow is described in the Snakemake Workflow Catalog. If

1 Dec 16, 2021

This repo is dedicated to the data extraction and manipulation of the World Bank's database called STEP.

Overview Welcome to the Step-X repository. This repo is dedicated to the data extraction and manipulation of the World Bank's database called STEP. Be

0 Jan 20, 2022

MetPy is a collection of tools in Python for reading, visualizing and performing calculations with weather data.

MetPy MetPy is a collection of tools in Python for reading, visualizing and performing calculations with weather data. MetPy follows semantic versioni

971 Dec 25, 2022

Uses MIT/MEDSL, New York Times, and US Census datasources to analyze per-county COVID-19 deaths.

Covid County Executive summary Setup Install miniconda, then in the command line, run conda create -n covid-county conda activate covid-county conda i

1 Dec 22, 2021

This project is the implementation template for HW 0 and HW 1 for both the programming and non-programming tracks

4 Mar 06, 2022

Intake is a lightweight package for finding, investigating, loading and disseminating data.

Intake: A general interface for loading data Intake is a lightweight set of tools for loading and sharing data in data science projects. Intake helps

851 Jan 01, 2023

Functional Data Analysis, or FDA, is the field of Statistics that analyses data that depend on a continuous parameter.

Functional Data Analysis Python package

184 Dec 27, 2022

Visions provides an extensible suite of tools to support common data analysis operations

Visions And these visions of data types, they kept us up past the dawn. Visions provides an extensible suite of tools to support common data analysis

168 Dec 28, 2022

This is a tool for speculation of ancestral allel, calculation of sfs and drawing its bar plot.

superSFS This is a tool for speculation of ancestral allel, calculation of sfs and drawing its bar plot. It is easy-to-use and runing fast. What you s

3 Dec 16, 2022

This is an analysis and prediction project for house prices in King County, USA based on certain features of the house

This is a project for analysis and estimation of House Prices in King County USA The .csv file contains the data of the house and the .ipynb file con

1 Jan 21, 2022

Python Project on Pro Data Analysis Track

Udacity-BikeShare-Project: Python Project on Pro Data Analysis Track Basic Data Exploration with pandas on Bikeshare Data Basic Udacity project using

0 Nov 10, 2021

[CVPR2022] This repository contains code for the paper "Nested Collaborative Learning for Long-Tailed Visual Recognition", published at CVPR 2022

Nested Collaborative Learning for Long-Tailed Visual Recognition This repository is the official PyTorch implementation of the paper in CVPR 2022: Nes

65 Dec 09, 2022

OpenARB is an open source program aiming to emulate a free market while encouraging players to participate in arbitrage in order to increase working capital.

Overview OpenARB is an open source program aiming to emulate a free market while encouraging players to participate in arbitrage in order to increase

3 Feb 12, 2022

Autopsy Module to analyze Registry Hives based on bookmarks provided by EricZimmerman for his tool RegistryExplorer

Related tags

Overview

Autopsy-Registry-Explorer

Specification

Features

Screenshot

Installation

TO-DO

Refrences

You might also like...

ForecastGA is a Python tool to forecast Google Analytics data using several popular time series models.

Flenser is a simple, minimal, automated exploratory data analysis tool.

a tool that compiles a csv of all h1 program stats

fds is a tool for Data Scientists made by DAGsHub to version control data and code at once.

Conduits - A Declarative Pipelining Tool For Pandas

ELFXtract is an automated analysis tool used for enumerating ELF binaries

This tool parses log data and allows to define analysis pipelines for anomaly detection.

cLoops2: full stack analysis tool for chromatin interactions

Unsub is a collection analysis tool that assists libraries in analyzing their journal subscriptions.

Releases(v0.2Beta)

v0.2Beta(Feb 6, 2022)

New Features:

v0.1Beta(Feb 5, 2022)

Owner

Mohammed Hassan

Includes all files needed to satisfy hw02 requirements

Mining the Stack Overflow Developer Survey

Snakemake workflow for converting FASTQ files to self-contained CRAM files with maximum lossless compression.

This repo is dedicated to the data extraction and manipulation of the World Bank's database called STEP.

MetPy is a collection of tools in Python for reading, visualizing and performing calculations with weather data.

Uses MIT/MEDSL, New York Times, and US Census datasources to analyze per-county COVID-19 deaths.

This project is the implementation template for HW 0 and HW 1 for both the programming and non-programming tracks

Intake is a lightweight package for finding, investigating, loading and disseminating data.

Functional Data Analysis, or FDA, is the field of Statistics that analyses data that depend on a continuous parameter.

Visions provides an extensible suite of tools to support common data analysis operations

This is a tool for speculation of ancestral allel, calculation of sfs and drawing its bar plot.

This is an analysis and prediction project for house prices in King County, USA based on certain features of the house

Python Project on Pro Data Analysis Track

[CVPR2022] This repository contains code for the paper "Nested Collaborative Learning for Long-Tailed Visual Recognition", published at CVPR 2022

International Space Station data with Python research 🌎

Pandas-based utility to calculate weighted means, medians, distributions, standard deviations, and more.

Hue Editor: Open source SQL Query Assistant for Databases/Warehouses

🌍 Create 3d-printable STLs from satellite elevation data 🌏

Open-source Laplacian Eigenmaps for dimensionality reduction of large data in python.

OpenARB is an open source program aiming to emulate a free market while encouraging players to participate in arbitrage in order to increase working capital.