| dionysos | Scanner for various IoCs |   |
| es4forensics | provides structs and functions to insert timeline data into an elasticsearch index |    |
| evtx2bodyfile | parses evtx files into a bodyfile |   |
| evtxtools | Collection of command line tools to correlate windows event logs. This set of tools is aimed to be used at forensic investigations. |   |
| mactime2 | Replacement for mactime which fixes some of its shortcomings |    |
| mft2bodyfile | parses an $MFT file to bodyfile |   |
| ntdsextract2 | Extraction of forensic artifacts from ntds.dit files |   |
| procbins | Compresses all process binaries into a zip file |   |
| regview | Offline-Viewer for Windows Registry Files |   |
| rexgen | A tool to create words based on regular expressions |  |
| | |
| evtxview | evtxview is a GUI viewer for Microsoft Windows evtx files (Windows event logs). I'm hacking this tiny tool because I need such a tool in most forensic investigations. | final, but boring |
| libe2ee | C++-based library that implements Proxy-ReEncryption (AFGH-Scheme) and provides exporting and importing of JSON datastructure | PoC, abondened |