209 tools and resources
Showcase your innovative cybersecurity solution to our dedicated audience of security professionals.
Reach out!
A digital investigation platform for parsing, searching, and visualizing evidences with advanced analytics capabilities.
Developing APIs to access memory on industrial control system devices.
Forensic imaging program with full hash authentication and various acquisition options.
An open source format for storing digital evidence and data, with a C/C++ library for creating, reading, and manipulating AFF4 images.
A script for extracting common Windows artifacts from source images and VSCs with detailed dependencies and usage instructions.
An open source digital forensic tool for processing and analyzing digital evidence with high performance and multiplatform support.
Python forensic tool for extracting and analyzing information from Firefox, Iceweasel, and Seamonkey browsers.
Windows anti-forensics USB monitoring tool with the ability to shutdown the computer upon detecting the unplugging of a specified USB device.
A library and tools to access and manipulate VMware Virtual Disk (VMDK) files.
Dump iOS Frequent Locations from StateModel#.archive files.
A library to access and parse OLE 2 Compound File (OLECF) format files.
Review of various MFT parsers used in digital forensics for analyzing NTFS file systems.
A command-line utility and Python package for mounting and unmounting various disk image formats with support for different volume systems and filesystems.
A powerful tool for analyzing and visualizing system activity timelines.
Highlighter is a FireEye Market app that integrates with FireEye products to provide enhanced cybersecurity capabilities.
Comprehensive digital forensics and incident response platform for law enforcement, corporate, and academic institutions.
Analyse a forensic target to find and report files found and not found in hashlookup CIRCL public service.
A library to access and parse Windows Shortcut File (LNK) format.
A suite of console tools for working with timestamps in Windows with 100-nanosecond precision.
dc3dd is a patch to the GNU dd program, tailored for forensic acquisition with features like hashing and file verification.
A tool for restoring defocused and blurred images with various deconvolution techniques and fast processing capabilities.
