From 14f842b5919cda82189330c8b056349aebf7e996 Mon Sep 17 00:00:00 2001
From: rshipp <github@rshipp.com>
Date: Sat, 9 May 2015 16:30:52 -0600
Subject: [PATCH] Add @keydet89 regripper and blog page

---
 README.md | 9 +++++++++
 1 file changed, 9 insertions(+)

diff --git a/README.md b/README.md
index c06cc1f..0c44791 100644
--- a/README.md
+++ b/README.md
@@ -22,6 +22,7 @@ A curated list of awesome malware analysis tools and resources. Inspired by
     - [Debugging and Reverse Engineering](#debugging-and-reverse-engineering)
     - [Network](#network)
     - [Memory Forensics](#memory-forensics)
+    - [Windows Artifacts](#windows-artifacts)
     - [Storage and Workflow](#storage-and-workflow)
     - [Miscellaneous](#miscellaneous)
 - [Resources](#resources)
@@ -296,6 +297,12 @@ the [browser malware](#browser-malware) section.*
 * [WinDbg](https://msdn.microsoft.com/en-us/windows/hardware/hh852365) - Live
   memory inspection and kernel debugging for Windows systems.
 
+## Windows Artifacts
+
+* [RegRipper](https://regripper.wordpress.com/)
+  ([GitHub](https://github.com/keydet89/RegRipper2.8)) -
+  Plugin-based registry analysis tool.
+
 ## Storage and Workflow
 
 * [Malwarehouse](https://github.com/sroberts/malwarehouse) - Store, tag, and
@@ -344,6 +351,8 @@ the [browser malware](#browser-malware) section.*
   blog and resources by Lenny Zeltser.
 * [Malware Analysis Search](http://www.google.com/cse/home?cx=011750002002865445766:pc60zx1rliu) -
   Custom Google search engine from [Corey Harrell](journeyintoir.blogspot.com/).
+* [WindowsIR: Malware](http://windowsir.blogspot.com/p/malware.html) - Harlan
+  Carvey's page on Malware.
 * [/r/Malware](https://www.reddit.com/r/Malware) - The malware subreddit.
 * [/r/ReverseEngineering](https://www.reddit.com/r/ReverseEngineering) -
   Reverse engineering subreddit, not limited to just malware.