What is the pricing for Acquire?

Acquire is a free Security Operations tool. This makes it accessible for organizations of all sizes, from startups to enterprises. Visit https://github.com/fox-it/acquire/ for download and installation instructions.

What are alternatives to Acquire?

Popular alternatives to Acquire include: 1. Exterro FTK Imager Pro - Forensic imaging tool for disk acquisition, iOS collection, and encryption (Commercial) 2. Cyacomb - Digital forensics tools for detecting CSAM on devices and online platforms. (Commercial) 3. Magnet Forensics - Digital forensics platform for evidence acquisition, analysis, and DFIR. (Commercial) 4. APFS FUSE Driver for Linux - A read-only FUSE driver that enables Linux systems to mount and access Apple File System (APFS) volumes, including encrypted and fusion drives. (Free) 5. libqcow - A library for read-only access to QEMU Copy-On-Write (QCOW) image files, supporting multiple versions and compression formats for digital forensics analysis. (Free) Compare these tools and more at https://cybersectools.com/categories/security-operations

Who should use Acquire?

Acquire is for security teams and organizations that need Disk Image. It's particularly suitable for small to medium-sized teams looking for cost-effective solutions. Other Security Operations tools can be found at https://cybersectools.com/categories/security-operations

Acquire | CybersecTools

Acquire

A tool to quickly gather forensic artifacts from disk images or a live system into a lightweight container, aiding in digital forensic triage.

Free118

Visit Website

Compare

Free118

Acquire

A tool to quickly gather forensic artifacts from disk images or a live system into a lightweight container, aiding in digital forensic triage.

Visit Website

Data verified Apr 2026

Explore Security Operations 48 Alternatives Compare Stacks Market Map Explore All Tools

ADYour product here. Reach security decision-makers.Launch a campaign

Acquire Description

Security Operations/Digital Forensics and Incident Response

Disk Image

Acquire is a tool to quickly gather forensic artifacts from disk images or a live system into a lightweight container. This makes acquire an excellent tool to, among others, speedup the process of digital forensic triage. It uses dissect to gather that information from the raw disk, if possible. Acquire gathers artifacts based on modules. These modules are paths or globs on a filesystem which acquire attempts to gather. Multiple modules can be executed at once, which have been collected together inside a profile. These profiles (used with --profile) are full, default, minimal, and none. Depending on what operating system gets detected, different artifacts are collected. The most basic usage of acquire is as follows: user@dissect~$ sudo acquire. The tool requires administrative access to read raw disk data instead of using the operating system for file access. However, there are some options available to use the operating system as a fallback option (e.g., --fallback or --force-fallback). For more information, please see the documentation. Requirements: This project is part of the Dissect framework and requires Python. Information on the supported Python versions can be found in the documentation.

Acquire Description

Security Operations/Digital Forensics and Incident Response

Disk Image

Acquire FAQ

Common questions about Acquire including features, pricing, alternatives, and user reviews.

Acquire is A tool to quickly gather forensic artifacts from disk images or a live system into a lightweight container, aiding in digital forensic triage. It is a Security Operations solution designed to help security teams with Disk Image.

Have more questions? Browse our categories or search for specific tools.

Acquire

Acquire

Acquire Description

Acquire Description

Acquire FAQ

FEATURED

ALTERNATIVES

POPULAR

TRENDING CATEGORIES

FEATURED

ALTERNATIVES

POPULAR

TRENDING CATEGORIES