Registry RSS

This is a copy of the Registry Decoder reposit ...
Read More...
Unique Pageviews2,083
Rating
Star00Star00Star00Star00Star00
Website Clicks1,117

Accessdata Registry Viewer Popular

0 reviews

Unique Pageviews4,568
Rating
Star00Star00Star00Star00Star00
Website Clicks2,039

Alien Registry Viewer is similar to the RegEdit application included into Windows, but unlike RegEdit, it works with standalone registry files. While RegEdit shows the contents of the system registry, Alien Registry Viewer works with registry files cop ...
Read More...

Unique Pageviews2,857
Rating
Star00Star00Star00Star00Star00
Website Clicks1,449

dfWinReg

0 reviews

Digital Forensics Windows Registry (dfWinReg)

dfWinReg, or Digital Forensics Windows Registry, provides read-only access to Windows Registry objects. The goal of dfWinReg is to provide a generic interface for accessing Windows Registry objects ...
Read More...

Unique Pageviews2,015
Rating
Star00Star00Star00Star00Star00
Website Clicks1,205

DG Wingman Popular

★★★★★
0 reviews

DG Wingman is a free community Windows tool designed to aid in the collection of forensic evidence in order to properly investigate and scope an intrusion. This utility enables yo ...
Read More...

Unique Pageviews1,742
Rating
Star10Star10Star10Star10Star10
Website Clicks530
Votes1

Registry Explorer is a new approach to interacting with Registry hives. It has several unique capabilities not found in other programs.

Unique Pageviews6,357
Rating
Star10Star10Star10Star10Star10
Website Clicks2,148
Votes1

Gaijin RegistryReport Popular

0 reviews

" RegistryReport shows information about the operating system, installed software, the last user activity, the user sett ...
Read More...

Unique Pageviews4,104
Rating
Star00Star00Star00Star00Star00
Website Clicks1,728

Gaijin RegistryViewer Popular

0 reviews

" RegistryViewer is a free registry forensic analysis tool that can open raw Windows NT 5 Registry files (Windows 2000 / X ...
Read More...

Unique Pageviews3,307
Rating
Star00Star00Star00Star00Star00
Website Clicks2,237

Harlan Carvey RegRipper Popular

★★★★½
0 reviews

What is RegRipper? RegRipper was created and maintained by Harlan Carvey. RegRipper, written in Perl, is the fastest, easiest, and best tool for registry analysis in forensics examinations. RegRipper has been downloaded over 5000 times and used by exam ...
Read More...

Unique Pageviews6,601
Rating
Star10Star10Star10Star10Star10
Website Clicks3,143
Votes4

"Registry Browser is a forensic software application. ?It?s designed?specifically?for examining the?Read More...

Unique Pageviews2,705
Rating
Star00Star00Star00Star00Star00
Website Clicks1,714

This application allows to read files containing Windows 9x,NT,2K,XP,2K3,7,8 and 10 registry hives. It extracts many useful information about configuration and windows installation settings of host machine. 

Unique Pageviews2,400
Rating
Star00Star00Star00Star00Star00
Website Clicks999

msuhanov/yarp

0 reviews

Unique Pageviews1,847
Rating
Star00Star00Star00Star00Star00
Website Clicks1,029

Unique Pageviews1,967
Rating
Star00Star00Star00Star00Star00
Website Clicks936

r-winreg

0 reviews

Windows Registry Parsing Library

Unique Pageviews1,570
Rating
Star00Star00Star00Star00Star00
Website Clicks844

The script uses Willi Ballenthin's  python-registry  project (install through pip:  pip install python-registry ). It will output the list of filenames in order with the associated tim ...
Read More...

Unique Pageviews2,004
Rating
Star00Star00Star00Star00Star00
Website Clicks1,269

RecentDocsMRU

0 reviews

"This script will parse the RecentDocs key and its subkeys in a NTUSER.dat file. It will output the list of filenames in order with the associated timestamps. See Dan's (@4n6k) blog post for background. Usage is simple. Only the -f option is required t ...
Read More...

Unique Pageviews3,493
Rating
Star00Star00Star00Star00Star00
Website Clicks1,585

RecentFilesView

0 reviews

This utility display the list of all recently opened files, and allows you to delete unwanted filename entries. You can also save the files list into text/html/xml file.

Unique Pageviews2,340
Rating
Star00Star00Star00Star00Star00
Website Clicks1,523

regfi

0 reviews

The regfi library is a read-only NT registry library which serves as the main engine behind the reglookup tool. It is designed with digital forensic analysis in mind, but it should also be useful in other tools which need to efficiently traverse and qu ...
Read More...

Unique Pageviews1,811
Rating
Star00Star00Star00Star00Star00
Website Clicks1,231

Registryasxml

0 reviews

Registryasxml is a GUI tool by Stephane Rodriguez that exports and imports Microsoft Registry files with a simple key/value syntax

Unique Pageviews2,218
Rating
Star00Star00Star00Star00Star00
Website Clicks1,076

RegLister

0 reviews

"Recurse through a registry, identifying values with large data -- a registry malware hunter." ?www.securityforrealpeople.com/reglister

Unique Pageviews3,156
Rating
Star00Star00Star00Star00Star00
Website Clicks1,455

RegRipper GUI Popular

0 reviews

The rationale behind it is that you can quickly run plugins without having to look up which hives they relate to, and you can quickly click through and add them to a text report.

If the plugin indicates that it relates to multiple plugins then ...
Read More...

Unique Pageviews3,601
Rating
Star00Star00Star00Star00Star00
Website Clicks1,764

The RegRipper Launcher EnScript does just that, launches RegRipper directly from EnCase. Select the desired registries in EnCase, run the RegRipper Launcher from the EnScript drop down and view the results in console mode and/or Word. You can also book ...
Read More...

Unique Pageviews2,795
Rating
Star00Star00Star00Star00Star00
Website Clicks1,257

regrippy

0 reviews

A modern Python-3-based alternative to RegRipper

RegRip py is a framework for reading and extracting useful forensics data from Windows registry hives. It is an alternative to RegRipper ...
Read More...

Unique Pageviews1,547
Rating
Star00Star00Star00Star00Star00
Website Clicks317

regshot

0 reviews

Unique Pageviews2,614
Rating
Star00Star00Star00Star00Star00
Website Clicks1,280

cafae ?is a Windows registry parser that targets specific registry keys that ...
Read More...

Unique Pageviews3,986
Rating
Star00Star00Star00Star00Star00
Website Clicks1,661

USB Forensic Tracker (USBFT) is a comprehensive forensic tool that extracts USB device connection artefacts from a range of locations within the live system, from mounted forensic images, from volume shadow copies, from extracted Windows system files a ...
Read More...

Unique Pageviews3,036
Rating
Star00Star00Star00Star00Star00
Website Clicks1,217

This module scrapes a series of registry keys for information about USB devices that have been inserted into the computer. In addition, the System EventLog is queried for EventIDs 20003 and 20001.

 

Unique Pageviews1,507
Rating
Star00Star00Star00Star00Star00
Website Clicks1,350