Docker Explorer
Forensics tool for exploring offline Docker filesystems.
libregf is a library to access the Windows NT Registry File (REGF) format. It provides a way to read and parse registry files, with planned features including Dokan support and multi-threading support. The library is licensed under LGPLv3+ and is currently in alpha status. For more information, see the project documentation and building instructions.
Forensics tool for exploring offline Docker filesystems.
A library to access and manipulate RAW image files.
Digital investigation tool for extracting forensic data from computers and managing investigations.
Python forensic tool for extracting and analyzing information from Firefox, Iceweasel, and Seamonkey browsers.
Visually inspect regex matches in binary data/text with YARA and regular expressions, displaying matched bytes and surrounding context.
Tool for parsing NTFS journal files, $Logfile, and $MFT.