Dump iOS Frequent Locations from StateModel#.archive files.
libevtx is a library to access the Windows XML Event Log (EVTX) format. It provides a way to access and parse EVTXML files, allowing for the extraction of useful information from Windows event logs. The library is written in C and provides a Python binding, making it a useful tool for digital forensics and incident response. It is licensed under the LGPLv3+ and is currently in the alpha stage, with multi-threading support planned for future development. For more information, users can access the project documentation and building instructions on the GitHub wiki.
Dump iOS Frequent Locations from StateModel#.archive files.
Python tool for remote memory acquisition
iOSForensic is a Python tool for forensic analysis on iOS devices, extracting files, logs, SQLite3 databases, and .plist files into XML.
ForensicMiner, Redefine DFIR Automations
An open source format for storing digital evidence and data, with a C/C++ library for creating, reading, and manipulating AFF4 images.
Web interface for the Volatility Memory Forensics Framework