Pancake Viewer
A DFVFS backed viewer project with a WxPython GUI, aiming to enhance file extraction and viewing capabilities.
libqcow is a library to access the QEMU Copy-On-Write (QCOW) image file format. It supports read-only operations for QCOW versions 1, 2, and 3, with features including zlib (DEFLATE) compression, AES-CBC 128-bit encryption, and backing file (differential image). Currently in alpha status, the library is licensed under LGPLv3+ and has some unsupported features like LUKS encryption, data file, and in-image snapshots. The project is working towards thread-safety in file API functions.
A DFVFS backed viewer project with a WxPython GUI, aiming to enhance file extraction and viewing capabilities.
A network forensics tool for visualizing packet captures as network diagrams with detailed analysis.
A community-sourced repository of digital forensic artifacts in YAML format.
Browse and analyze iPhone/iPad backups with detailed file properties and various viewers.
Malscan is a tool to scan process memory for YARA matches and execute Python scripts.
Universal hexadecimal editor for computer forensics, data recovery, and IT security.