Vortex AmCache

AmCache.hve Hive Analyzer

Standalone C# Tool for live Windows AMCache parsing. Reads and interprets hive data, fixes version quirks, and extracts forensic artifacts with metadata resolution.

• Loads and parses AMCache Hive (Win10/11)
• Metadata: SHA1, signatures and timestamps
• No External Dumps: Live Hive reading