libfvde is a library to access FileVault Drive Encryption (FVDE) (or FileVault2) encrypted volumes. It supports various Mac OS X versions and encryption volume types, including removable media volumes and system volumes. The library provides access to encrypted data on a storage media volume. The project is still experimental and has some unsupported Core Storage format features, such as multiple physical volumes. It also has some planned features, including Dokan support and partial encrypted volumes. libfvde is licensed under LGPLv3+ and has a wiki with documentation and building instructions.
This tool is not verified yet and doesn't have listed features.
Did you submit the verified tool? Sign in to add features.
Are you the author? Claim the tool by clicking the icon above. After claiming, you can add features.
Orochi is a collaborative forensic memory dump analysis framework.
Powerful tool for searching and hunting through Windows forensic artefacts with support for Sigma detection rules and custom Chainsaw detection rules.
Comprehensive digital forensics and incident response platform for law enforcement, corporate, and academic institutions.
A high-performance digital forensics exploitation tool for extracting structured information from various inputs without parsing file system structures.
A repository containing material from a talk on sub-domain enumeration techniques
A Python tool for in-depth PDF analysis and modification.