bstrings
A command-line tool for searching and extracting strings from files with various options like ASCII and Unicode string search.
Hivex is a Windows Registry hive extraction library that allows users to read and write Windows Registry 'hive' binary files. It provides a C API and can export the hive as XML. The library is written in C and has bindings for OCaml, Perl, Python, and Ruby. It is licensed under LGPL v2.1. Hivex is a self-contained library that does not use the textual .REG format for output. Instead, it provides a C API and a separate program to export the hive as XML. The library is derived from several sources, including NTREG registry reader/writer library and dumphive, a BSD-licensed Pascal program. Hivex is designed to be more careful about handling error cases, corrupt and malicious registry files, and endianness compared to other libraries.
A command-line tool for searching and extracting strings from files with various options like ASCII and Unicode string search.
A Mac OS X forensic utility for ensuring correct forensic procedures during disk imaging.
A tool for extracting files from packet capture files with ease of use and extensibility for Python developers.
A tool to quickly gather forensic artifacts from disk images or a live system into a lightweight container, aiding in digital forensic triage.
A portable volatile memory acquisition tool for Linux.
Open source digital forensics tools for analyzing disk images and recovering files.