shellbags

Registry parser

This tool helps reconstruct user activities by parsing Windows Registry data.

Cross-platform, open-source shellbag parser

GitHub
151 stars
16 watching
37 forks
Language: Python
last commit: about 2 years ago
Linked from 1 awesome list


Backlinks from these awesome lists:

Related projects:

Repository Description Stars
williballenthin/python-evt A Python module for parsing classic Windows Event Log files (.evt) 49
williballenthin/python-evtx A Python module for parsing Windows Event Log files (.evtx) into structured data 732
wing924/shellwords A library to manipulate strings according to UNIX Bourne shell word parsing rules 24
williballenthin/indxparse A tool suite for parsing NTFS artifacts and extracting information from INDX files. 215
merrychap/shellen An interactive tool for crafting and disassembling shellcodes 893
williballenthin/process-forest Tools for reconstructing historical process hierarchies from Windows event logs. 146
mattn/go-shellwords A library for parsing command-line arguments and environment variables in a shell-like way 536
williballenthin/lfle Recover event log entries from an image by identifying record structures. 27
pawamoy/shell-history Visualizes shell usage and command history with charts. 112
williballenthin/python-ntfs A Python library for analyzing and working with NTFS file systems. 81
souravbaghz/canghost Automated script for simulating and replaying CAN bus packets to practice car hacking or testing 121
hug33k/alfred-shellvariables A tool that allows users to access and manipulate shell variables from the Alfred workflow 21
xxjwxc/public A comprehensive utility package for Go programmers 175
rusty-ferris-club/shellclear A tool to secure shell commands history by detecting sensitive data and providing options to clear or backup the history 220
gabriella439/turtle A Haskell-based shell scripting library providing a typed and lightweight environment for executing system commands and performing filesystem operations. 946