Ultra-fast file search for Windows using NTFS MFT

Timestomping malware detection framework + arena with RL agent baselines, based on Doctor Who.

Live Windows forensic triage tool that rapidly detects anti-forensics, suspicious execution, and post-compromise activity.

Fast NTFS file search daemon for Windows using USN journal + SQLite.

C++ NTFS parser for file system change forensics

⚡ Lightning-fast file & content search engine for Windows — powered by Rust + Tauri

From-scratch NTFS reader (ntfs-core: MFT, attributes, indexes, data runs, LZNT1, $UsnJrnl:$J change journal over Read+Seek) plus a graded anomaly auditor (ntfs-forensic: timestomping, alternate data streams, deleted records, MFT/LogFile tamper checks) — panic-free, fuzzed, no unsafe

USN Journal-based live file monitoring for Java. Zero-rescan real-time file system change detection for Windows NTFS volumes. Requires admin privileges to enable USN Journal.