A toolkit for forensic analysis of network appliances with YARA decoding options and frame extraction capabilities.
libevt is a library to access the Windows Event Log (EVT) format.The library provides a way to read and parse EVT files, which are used to store event logs in Windows operating systems.libevt is open-source and licensed under the LGPLv3+ license.It is currently in the alpha stage and has a wiki page with documentation and instructions on how to build from source.
A toolkit for forensic analysis of network appliances with YARA decoding options and frame extraction capabilities.
A utility for recovering deleted files from ext3 or ext4 partitions.
wxHexEditor is a free hex editor / disk editor with various data manipulation operations and visualization functionalities.
A library and set of tools for accessing and analyzing storage media devices and partitions for forensic analysis and investigation.
A tool for extracting files from packet capture files with ease of use and extensibility for Python developers.
A tool for analyzing pentest screenshots using a convolutional neural network