Notepad Parser
A Rust parser for Notepad TabState artifact
6 Posts
Windows
Rhaegal
Rhaegal is a tool used to scan Windows Event Logs for suspicious logs. Rhaegal uses custom rule format to detect suspicious/malicious logs
EventLogMonitor
EventLogMonitor hooks into Windows Event Logs and displays new events as they are written to the log
winparsingtools
collection of structs and utilities for parsing windows binary formats.
LNK Parser
Full rust implementation to parse windows LNK files
CryptnetURLCache Parser-rs
A rust parser for CryptnetURLCache metadata files.