Vault of Windows Registry forensic artifacts
-
Updated
Nov 12, 2025 - JavaScript
#
registry-keys
Here are 5 public repositories matching this topic...
AutoParser is a forensic tool for parsing offline registry hives.
-
Updated
May 12, 2023 - Python
Malicious code examples in python (e.g. backdoor, self-replicant code, keylogger, etc.).
-
Updated
Oct 15, 2024 - Python
High‑performance iocx plugin for detecting Windows Registry keys, values, and persistence locations. Includes full test coverage, performance benchmarks, and security checks.
python registry regex persistence dfir malware-analysis digital-forensics autorun windows-registry threat-detection security-tooling registry-keys registry-values registry-persistence ioc-extraction iocx iocx-plugin
-
Updated
Mar 30, 2026 - Python
Pulls select event logs, firewall rules, and registry keys from windows machines into .csv files via powershell.
-
Updated
Mar 25, 2025 - PowerShell
Improve this page
Add a description, image, and links to the registry-keys topic page so that developers can more easily learn about it.
Add this topic to your repo
To associate your repository with the registry-keys topic, visit your repo's landing page and select "manage topics."