Skills
.Work. You
Rest

analyzing-lnk-file-and-jump-list-artifacts

Community

Turn Windows LNK & Jump List data into evidence.

Data & Analytics#forensics#windows-forensics#lnk-files#jump-lists#shell-link#lecmd#jlecmd
AuthorYukiIto1999
Version1.0.0
Installs0

System Documentation

What problem does it solve?

Analyzes Windows LNK shortcut files and Jump List artifacts to establish evidence of file access, program execution, and user activity.

Core Features & Use Cases

  • Parses LNK files and Jump List artifacts to extract target paths, timestamps, volume information, and machine identifiers.
  • Generates structured outputs suitable for case reports and timelines, including metadata and observable artifacts.
  • Applies to forensic investigations, incident response, and OSINT workflows requiring Windows artifact timelines.

Quick Start

Analyze a directory containing LNK and Jump List artifacts to produce a structured report.

Dependency Matrix

Required Modules

LnkParse3

Components

scriptsreferences

💻 Claude Code Installation

Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.

Please help me install this Skill:
Name: analyzing-lnk-file-and-jump-list-artifacts
Download link: https://github.com/YukiIto1999/ctf-sleuth/archive/main.zip#analyzing-lnk-file-and-jump-list-artifacts

Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
View Source Repository

Agent Skills Search Helper

Install a tiny helper to your Agent, search and equip skill from 471,000+ vetted skills library on demand.