YARALYZER
0 (0)
Visually inspect regex matches in binary data/text with YARA and regular expressions, displaying matched bytes and surrounding context.
DMG2IMG is a tool which allows converting Apple compressed dmg archives to standard (hfsplus) image disk files. This tool handles zlib, bzip2, and LZFSE compressed dmg images. Usage: dmg2img [-l] [-p N] [-s] [-v] [-V] [-d] <input.dmg> [<output.img> | -] or dmg2img [-l] [-p N] [-s] [-v] [-V] [-d] -i <input.dmg> -o <output.img | -> Options: -s (silent) -v (verbose) -V (extremely verbose) -d (debug) -l (list partitions) -p N (extract only partition N) See the original README file for platform-specific instructions to open or mount the resulting output file. The original author is vu1tur, http://vu1tur.eu.org/dmg2img. This Git repository is maintained by Peter Wu at https://github.com/Lekensteyn/dmg2img based on imported tarballs. It includes bug and security fixes and further enhancements. Building Required packages: zlib1g-dev (zlib support) libbz2-dev (bzip2 support) libssl-dev (only required for vfdecrypt, not needed for dmg2img) LZFSE decompression support requires the LZFSE library which can be found at https://github.com/lzfse/lzfse/. As this library is not widely available on Linux distributions, it is not enabled by default. To build dmg2img: make dmg2img
Visually inspect regex matches in binary data/text with YARA and regular expressions, displaying matched bytes and surrounding context.
An anti-forensic kill-switch tool for USB ports to shut down the computer immediately in case of unauthorized access.
A community-sourced repository of digital forensic artifacts in YAML format.
Open source Python library for NTFS analysis
A binary analysis platform for analyzing binary programs
A digital forensics tool that provides read-only access to file-system objects from various storage media types and file formats.