libqcow Logo

libqcow

0
Free
Visit Website

libqcow is a library to access the QEMU Copy-On-Write (QCOW) image file format. It supports read-only operations for QCOW versions 1, 2, and 3, with features including zlib (DEFLATE) compression, AES-CBC 128-bit encryption, and backing file (differential image). Currently in alpha status, the library is licensed under LGPLv3+ and has some unsupported features like LUKS encryption, data file, and in-image snapshots. The project is working towards thread-safety in file API functions.

FEATURES

ALTERNATIVES

Accessing databases stored on a machine by the Chrome browser and dumping URLs found.

Online platform for image steganography analysis

Rekall is a discontinued project that aimed to improve memory analysis methodology but faced challenges due to the nature of in-memory structure and increasing security measures.

Dump iOS Frequent Locations from StateModel#.archive files.

Python tool for remote memory acquisition

Automated Mac Forensic Triage Collector

ID-spoofing NFS client

A digital investigation platform for parsing, searching, and visualizing evidences with advanced analytics capabilities.