Autopsy Module to analyze Registry Hives based on bookmarks provided by EricZimmerman for his tool RegistryExplorer

Mohammed Hassan

Last update: Mar 31, 2022

Related tags

Data Analysis Autopsy-Registry-Explorer

Overview

Autopsy-Registry-Explorer

Autopsy Module to analyze Registry Hives based on bookmarks provided by EricZimmerman for his tool RegistryExplorer

Specification

Tested Autopsy version: 4.19.3
OS's supported on: Windows
License: GNU General Public License Version 3

Features

Analyse Registry hives based on bookmarks provided by EricZimmerman
Ability to analyze registry hives independently without the need to load a full disk image
Categorize Keys according to their usage

Screenshot

Installation

git clone https://github.com/0xMohammed/Autopsy-Registry-Explorer.git
copy Module folder to 'C:\Users\{Username}\AppData\Roaming\autopsy\python_modules'

TO-DO

Add Transaction logs analysis

Refrences

Autopsy discussion group
Sleuthkit API Reference
Python Registry Parser

You might also like...

ForecastGA is a Python tool to forecast Google Analytics data using several popular time series models.

ForecastGA is a tool that combines a couple of popular libraries, Atspy and googleanalytics, with a few enhancements.

36 Jan 3, 2023

Flenser is a simple, minimal, automated exploratory data analysis tool.

Flenser Have you ever been handed a dataset you've never seen before? Flenser is a simple, minimal, automated exploratory data analysis tool. It runs

79 Sep 20, 2022

a tool that compiles a csv of all h1 program stats

h1stats - h1 Program Stats Scraper This python3 script will call out to HackerOne's graphql API and scrape all currently active programs for informati

40 Oct 27, 2022

fds is a tool for Data Scientists made by DAGsHub to version control data and code at once.

Fast Data Science, AKA fds, is a CLI for Data Scientists to version control data and code at once, by conveniently wrapping git and dvc

359 Dec 22, 2022

Conduits - A Declarative Pipelining Tool For Pandas

Conduits - A Declarative Pipelining Tool For Pandas Traditional tools for declaring pipelines in Python suck. They are mostly imperative, and can some

7 Nov 21, 2021

ELFXtract is an automated analysis tool used for enumerating ELF binaries

ELFXtract ELFXtract is an automated analysis tool used for enumerating ELF binaries Powered by Radare2 and r2ghidra This is specially developed for PW

49 Nov 28, 2022

This tool parses log data and allows to define analysis pipelines for anomaly detection.

logdata-anomaly-miner This tool parses log data and allows to define analysis pipelines for anomaly detection. It was designed to run the analysis wit

32 Nov 27, 2022

cLoops2: full stack analysis tool for chromatin interactions

cLoops2: full stack analysis tool for chromatin interactions Introduction cLoops2 is an extension of our previous work, cLoops. From loop-calling base

25 Dec 14, 2022

Unsub is a collection analysis tool that assists libraries in analyzing their journal subscriptions.

About Unsub is a collection analysis tool that assists libraries in analyzing their journal subscriptions. The tool provides rich data and a summary g

9 Nov 16, 2022

Releases(v0.2Beta)

v0.2Beta(Feb 6, 2022)
New Features:

Transaction logs analysis and determine whether the Registry Hive is dirty or not.

Source code(tar.gz)
Source code(zip)
RegistryExplorerv0.2Beta.zip(10.03 MB)
v0.1Beta(Feb 5, 2022)

Source code(tar.gz)
Source code(zip)
RegistryExplorerv0.1Beta.zip(6.42 MB)

Owner

Mohammed Hassan

Security engineer @Cyberdefenders | DFIR

GitHub

MDAnalysis is a Python library to analyze molecular dynamics simulations.

MDAnalysis Repository README [*] MDAnalysis is a Python library for the analysis of computer simulations of many-body systems at the molecular scale,

933 Dec 28, 2022

Leverage Twitter API v2 to analyze tweet metrics such as impressions and profile clicks over time.

Tweetmetric Tweetmetric allows you to track various metrics on your most recent tweets, such as impressions, retweets and clicks on your profile. The

29 Oct 18, 2022

Uses MIT/MEDSL, New York Times, and US Census datasources to analyze per-county COVID-19 deaths.

Covid County Executive summary Setup Install miniconda, then in the command line, run conda create -n covid-county conda activate covid-county conda i

1 Dec 22, 2021

follow-analyzer helps GitHub users analyze their following and followers relationship

follow-analyzer follow-analyzer helps GitHub users analyze their following and followers relationship by providing a report in html format which conta

2 May 2, 2022

DenseClus is a Python module for clustering mixed type data using UMAP and HDBSCAN

DenseClus is a Python module for clustering mixed type data using UMAP and HDBSCAN. Allowing for both categorical and numerical data, DenseClus makes it possible to incorporate all features in clustering.

53 Dec 8, 2022

Elementary is an open-source data reliability framework for modern data teams. The first module of the framework is data lineage.

Data lineage made simple, reliable, and automated. Effortlessly track the flow of data, understand dependencies and analyze impact. Features Visualiza

898 Jan 9, 2023

Autopsy Module to analyze Registry Hives based on bookmarks provided by EricZimmerman for his tool RegistryExplorer

Related tags

Overview

Autopsy-Registry-Explorer

Specification

Features

Screenshot

Installation

TO-DO

Refrences

You might also like...

ForecastGA is a Python tool to forecast Google Analytics data using several popular time series models.

Flenser is a simple, minimal, automated exploratory data analysis tool.

a tool that compiles a csv of all h1 program stats

fds is a tool for Data Scientists made by DAGsHub to version control data and code at once.

Conduits - A Declarative Pipelining Tool For Pandas

ELFXtract is an automated analysis tool used for enumerating ELF binaries

This tool parses log data and allows to define analysis pipelines for anomaly detection.

cLoops2: full stack analysis tool for chromatin interactions

Unsub is a collection analysis tool that assists libraries in analyzing their journal subscriptions.

Releases(v0.2Beta)

v0.2Beta(Feb 6, 2022)

New Features:

v0.1Beta(Feb 5, 2022)

Owner

Mohammed Hassan

MDAnalysis is a Python library to analyze molecular dynamics simulations.

Leverage Twitter API v2 to analyze tweet metrics such as impressions and profile clicks over time.

Uses MIT/MEDSL, New York Times, and US Census datasources to analyze per-county COVID-19 deaths.

follow-analyzer helps GitHub users analyze their following and followers relationship

DenseClus is a Python module for clustering mixed type data using UMAP and HDBSCAN

Elementary is an open-source data reliability framework for modern data teams. The first module of the framework is data lineage.

Python package for processing UC module spectral data.

A Python module for clustering creators of social media content into networks

A neural-based binary analysis tool

Randomisation-based inference in Python based on data resampling and permutation.