libvslvm
0 (0)
A library and tools for accessing and analyzing Linux Logical Volume Manager (LVM) volume system format.
A free, community-sourced, machine-readable knowledge base of digital forensic artifacts that can be used as an information source and within other tools. The artifacts are in YAML format, and Python code is used for validation. For more information, visit the project documentation at: https://artifacts.readthedocs.io/en/latest. Contributions are welcome via the developers guide or by contacting forensicartifacts@googlegroups.com. Join the Artifacts channel of Open Source DFIR Slack for discussions.
A library and tools for accessing and analyzing Linux Logical Volume Manager (LVM) volume system format.
A Python-based engine for automatic creation of timelines in digital forensic analysis
A library to access and parse Windows Shortcut File (LNK) format.
usbdeath is an anti-forensic tool that manipulates udev rules for known USB devices and performs actions on unknown USB device insertion or specific USB device removal.
wxHexEditor is a free hex editor / disk editor with various data manipulation operations and visualization functionalities.
Automated tool for parsing Windows registry hives and extracting valuable information for forensic analysis.