Tag Archives: NirSoft

IECacheView – Internet Explorer Cache Viewer

IECacheView is a small utility that reads the cache folder of Internet Explorer, and displays the list of all files currently stored in the cache.

LiveTcpUdpWatch – Displays live TCP and UDP Activity

LiveTcpUdpWatch is a tool for Windows that displays live information about all TCP and UDP activity on your system.

AlternateStreamView – Tool to Investigate ADS File System

AlternateStreamView is a small utility that allows you to scan your NTFS drive, and find all hidden alternate streams stored in the file system.

WinPrefetchView – Tool to Read Prefetch Files

WinPrefetchView is a small utility that reads the Prefetch files stored in your system and displays the information stored in them

RegFileExport – Tool to Extract Offline Registry Data

RegFileExport read the Registry file, analyze it, and then export the Registry data into a standard .reg file of Windows.

UserAssistView – Display UserAssist Items

One of the programs that will be helpful in the incident response from Nirsoft is UserAssistView.

CurrProcess – Tool to Display Currently Running Processes

CurrProcess utility is another nirsoft product that you can use among your toolkit for incident response.