libvmdk
0 (0)
A library and tools to access and manipulate VMware Virtual Disk (VMDK) files.
bulk_extractor is a high-performance digital forensics exploitation tool that rapidly scans any kind of input and extracts structured information such as email addresses, credit card numbers, JPEGs, and JSON snippets without parsing the file system or file system structures. The results are stored in text files that are easily inspected, searched, or used as inputs for other forensic processing. bulk_extractor also creates histograms of certain kinds of features that it finds, such as Google search terms and email addresses, as previous research has shown that such histograms are especially useful in investigative and law enforcement applications. Unlike other digital forensics tools, bulk_extractor probes every byte of data to see if it is the start of a sequence that can be decompressed or otherwise decoded. If so, the decoded data are recursively re-examined. As a result, bulk_extractor can find things like BASE64-encoded JPEGs and compressed JSON objects that traditional carving tools miss. This is the bulk_extractor 2.1 development branch! It is reliable, but if you want to have a well-tested product.
A library and tools to access and manipulate VMware Virtual Disk (VMDK) files.
A tool for creating compact Linux memory dumps compatible with popular debugging tools.
NBD is a userland implementation of the Network Block Device protocol, allowing for remote access to block devices over a network.
Automated tool for parsing Windows registry hives and extracting valuable information for forensic analysis.
Forensics tool for exploring offline Docker filesystems.
A cybersecurity tool for collecting and analyzing forensic artifacts on live systems.