Digital Forensics
209 tools and resources
FEATURED
Feature Your Cybersecurity Product
Showcase your innovative cybersecurity solution to our dedicated audience of security professionals.
Boost Your VisibilityNEW
A tool for creating compact Linux memory dumps compatible with popular debugging tools.
Zenduty's platform provides real-time operational health monitoring and incident response orchestration to improve incident response times and build a solid on-call culture.
A forensic tool to find hidden processes and TCP/UDP ports by rootkits or other hidden techniques.
Open source Python library for NTFS analysis
Yara pattern matching tool for forensic investigations with predefined rules for magic headers in files and raw images.
A library to access FileVault Drive Encryption (FVDE) encrypted volumes on Mac OS X systems.
Modern digital forensics and incident response platform with comprehensive tools.
A simple Golang application for storing NIST National Software Reference Library Reference Data Set (NSRL RDS) with md5 and sha1 hash lookup searches.
A cybersecurity tool for collecting and analyzing forensic artifacts on live systems.
A Mac OS X forensic utility for ensuring correct forensic procedures during disk imaging.
Open Source computer forensics platform with modular design for easy automation and scripting.
A Python tool for in-depth PDF analysis and modification.
A shell script for basic forensic collection of various artefacts from UNIX systems.
Autopsy is a GUI-based digital forensics platform for analyzing hard drives and smart phones, with a plug-in architecture for custom modules.
Stegextract is a Bash script that extracts hidden files and strings from images, supporting PNG, JPG, and GIF formats.
A library to access the Extensible Storage Engine (ESE) Database File (EDB) format used in various Windows applications.
Tool for analyzing Windows Recycle Bin INFO2 file
A console program for file recovery through data carving.
Accessing databases stored on a machine by the Chrome browser and dumping URLs found.
A library to access and read QEMU Copy-On-Write (QCOW) image file formats with support for zlib compression and AES-CBC encryption.
Automated Mac Forensic Triage Collector