Binalyze AIR is a modern digital forensics and incident response platform that offers a comprehensive set of tools for reducing incident response time, including a DFIR guide, compromise assessment solution, and an all-in-one evidence collector.
FEATURES
EXPLORE BY TAGS
SIMILAR TOOLS
A comprehensive incident response tool for Windows computers, providing advanced memory forensics and access to locked systems.
A command-line tool for creating hex dumps, converting between binary and human-readable representations, and patching binary files.
Stegextract is a Bash script that extracts hidden files and strings from images, supporting PNG, JPG, and GIF formats.
A PowerShell-based incident response and live forensic data acquisition tool for Windows hosts.
A digital artifact extraction framework for extracting data from volatile memory (RAM) samples, providing visibility into the runtime state of a system.
A library to access FileVault Drive Encryption (FVDE) encrypted volumes on Mac OS X systems.
A library to access and parse Windows XML Event Log (EVTX) format, useful for digital forensics and incident response.
A library for accessing and parsing Extensible Storage Engine (ESE) Database Files used by Microsoft applications like Windows Search, Exchange, and Active Directory for forensic analysis purposes.