dc3dd

0 (0)

dc3dd is an enhanced version of the GNU dd tool, designed for forensic data acquisition, featuring on-the-fly hashing, split output files, pattern writing, a progress meter, and file verification.

Digital Forensics

Free

digital-forensics data-acquisition forensic-tool data-recovery

ALTERNATIVES

hivex

0 (0)

A Windows Registry hive extraction library that reads and writes Windows Registry 'hive' binary files.

Digital Forensics

Free

binary-security windows file-analysis registry

libfwnt

0 (0)

A library for working with Windows NT data types, providing access and manipulation functions.

Digital Forensics

Free

windows library development research

BloodHound

0 (0)

A tool that uses graph theory to reveal hidden relationships and attack paths in an Active Directory environment.

Digital Forensics

Free

cybersecurity red-team security-research privilege-escalation

IRTriage

0 (0)

Automated collection tool for incident response triage in Windows systems.

Digital Forensics

Free

windows incident-response forensic-analysis memory-dumping

LiME

0 (0)

LiME is a Linux Memory Extractor tool for acquiring volatile memory from Linux and Linux-based devices, including Android, with features like full memory captures and minimal process footprint.

Digital Forensics

Free

linux forensic-analysis memory-forensics memory-acquisition kernel-module

FastIR Collector

0 (0)

Tool for live forensics acquisition on Windows systems, collecting artefacts for early compromise detection.

Digital Forensics

Free

json csv windows-forensics