CyLR Logo

CyLR

0
Free
Visit Website

The CyLR tool collects forensic artifacts from hosts with NTFS file systems quickly, securely, and minimizes impact to the host. It offers quick collection, raw file collection without using Windows API, collection of key artifacts by default, ability to specify custom targets, acquisition of special and in-use files, glob and regular expression patterns for custom targets, data collection into a zip file with customizable settings, and the option to specify a SFTP destination for the file archive. CyLR uses .NET Core and runs natively on Windows, Linux, and MacOS.

FEATURES

ALTERNATIVES

Custom built application for asynchronous forensic data presentation on an Elasticsearch backend, with upcoming features like Docker-based installation and new UI rewrite in React.

Python script to parse macOS MRU plist files into human-friendly format

Python tool for remote memory acquisition

A software that collects forensic artifacts on systems for forensic investigations.

Forensics tool for exploring offline Docker filesystems.

A console program for file recovery through data carving.

A free, open-source file data recovery software that can recover lost files from hard disks, CD-ROMs, and digital camera memory.

MalConfScan is a Volatility plugin for extracting configuration data of known malware and analyzing memory images.