A modular Windows Forensics Timeline Engine. Normalizes EVTX, Prefetch, Registry, and USB artifacts into a unified timeline with automated risk scoring and correlation analysis. Featuring a local AI-ready architecture.
python incident-response forensics dfir cybersecurity threat-hunting security-tools timeline-analysis windows-artifacts evtx-parser
-
Updated
Apr 3, 2026 - Python