Digital Forensics

209 tools and resources

Tags in this Category
anti-forensicbackupbinary-analysisbinary-conversionbinary-securitycase-managementchromecommand-line-toolcomputer-forensicsdata-recoverydigital-forensicsdigital-investigationdockerendpoint-securityfile-analysisfile-carvingfile-managementfile-patchingfile-recoveryfile-searchfile-systemfile-system-analysisfilesystemflaskforensic-analysisforensic-artifactsforensic-toolforensicshex-dumpincident-responseioskernel-modulelinuxlog-analysismacosmemory-acquisitionmemory-analysismftntfsoperating-systempassword-recoverypowershellpythonregexregistryscriptingsecuritysecurity-toolusbusb-securitywindowsyara

FEATURED

Feature Your Cybersecurity Product

Showcase your innovative cybersecurity solution to our dedicated audience of security professionals.

Reach out!

NEW

PassMark OSForensics

0 (0)

Digital investigation tool for extracting forensic data from computers and managing investigations.

Digital Forensics
Free
digital-forensicsdigital-investigationpassword-recoverydata-recoverycase-management
xxd Logo

xxd

0 (0)

A command-line tool for creating hex dumps, converting between binary and human-readable representations, and patching binary files.

Digital Forensics
Free
binary-securityfile-analysishex-dumpbinary-conversionfile-patching
Digital Forensics Artifacts Repository Logo

Digital Forensics Artifacts Repository

0 (0)

A community-sourced repository of digital forensic artifacts in YAML format.

Digital Forensics
Free
digital-forensicsforensicsforensic-artifacts
AChoir Windows Live Artifacts Acquisition Scripting Framework Logo

AChoir Windows Live Artifacts Acquisition Scripting Framework

0 (0)

A framework/scripting tool to standardize and simplify the process of scripting favorite Live Acquisition utilities for Incident Responders.

Digital Forensics
Free
incident-responseforensic-artifactsdigital-forensics
Hindsight Logo

Hindsight

0 (0)

Hindsight is a free tool for analyzing web artifacts from Google Chrome/Chromium browsers and presenting the data in a timeline for forensic analysis.

Digital Forensics
Free
digital-forensicsforensicschrome
Silk Guardian Logo

Silk Guardian

0 (0)

An anti-forensic Linux Kernel Module kill-switch for USB ports.

Digital Forensics
Free
linuxkernel-moduleanti-forensicusb-securitysecurity-tool
Open Backup Extractor Logo

Open Backup Extractor

0 (0)

Open Backup Extractor is an open source program for extracting data from iPhone and iPad backups.

Digital Forensics
Free
iosbackupmacossecurity
Turbinia Logo

Turbinia

0 (0)

Turbinia is an open-source framework for automating the running of common forensic processing tools to help with processing evidence in the Cloud.

Digital Forensics
Free
forensic-analysis
USN-Journal-Parser Logo

USN-Journal-Parser

0 (0)

Python script to parse the NTFS USN Change Journal.

Digital Forensics
Free
digital-forensicsfile-analysispythonscripting
usbrip Logo

usbrip

0 (0)

A forensics tool for tracking USB device artifacts on Linux machines.

Digital Forensics
Free
forensicsusblinuxlog-analysiscommand-line-toolfile-analysis
libregf Logo

libregf

0 (0)

A library to access and parse Windows NT Registry File (REGF) format.

Digital Forensics
Free
windowsregistryfile-analysisbinary-security
X-Ways Forensics Logo

X-Ways Forensics

0 (0)

Advanced computer forensics software with efficient features.

Digital Forensics
Free
digital-forensicsforensicsfile-recoverydata-recoverycomputer-forensics
M.E.A.T. - Mobile Evidence Acquisition Toolkit Logo

M.E.A.T. - Mobile Evidence Acquisition Toolkit

0 (0)

Toolkit for performing acquisitions on iOS devices with logical and filesystem acquisition support.

Digital Forensics
Free
iosforensicsfilesystem
PowerForensics Logo

PowerForensics

0 (0)

PowerForensics is a PowerShell digital forensics framework for hard drive forensic analysis.

Digital Forensics
Free
digital-forensicspowershellforensic-analysisfile-system-analysis
Linux Expl0rer Logo

Linux Expl0rer

0 (0)

Easy-to-use live forensics toolbox for Linux endpoints with various capabilities such as process inspection, memory analysis, and YARA scanning.

Digital Forensics
Free
forensicslinuxendpoint-securitypythonflaskmemory-analysis
MFT_Browser Logo

MFT_Browser

0 (0)

Recreates the File/Directory tree structure from an extracted $MFT file with detailed record mapping and analysis capabilities.

Digital Forensics
Free
mftntfsfile-carving
Timesketch Logo

Timesketch

0 (0)

A collaborative forensic timeline analysis tool for organizing and analyzing data with rich annotations and comments.

Digital Forensics
Free
forensic-analysisforensic-tool
Recon Logo

Recon

0 (0)

A file search and query tool for ops and security experts.

Digital Forensics
Free
file-analysisfile-searchsecurityfile-management
PhotoRec Logo

PhotoRec

0 (0)

A free, open-source file data recovery software that can recover lost files from hard disks, CD-ROMs, and digital camera memory.

Digital Forensics
Free
file-recoverydata-recoveryfile-systemoperating-system
Margarita Shotgun Logo

Margarita Shotgun

0 (0)

Python tool for remote memory acquisition

Digital Forensics
Free
memory-acquisitionpythondockerlinuxcommand-line-tool
YARALYZER Logo

YARALYZER

0 (0)

Visually inspect regex matches in binary data/text with YARA and regular expressions, displaying matched bytes and surrounding context.

Digital Forensics
Free
binary-analysisfile-analysishex-dumpbinary-conversionfile-patchingyararegexbinary-security
12
3
45