NTFS-Linker
0 (0)
Tool for parsing NTFS journal files, $Logfile, and $MFT.
Magnet ACQUIRE is a comprehensive digital forensics tool from Magnet Forensics that enables law enforcement, federal agencies, and corporate security teams to lawfully access and extract data from mobile devices and computers, ensuring a streamlined workflow and maintaining the integrity of the evidence.
Tool for parsing NTFS journal files, $Logfile, and $MFT.
LiME is a Linux Memory Extractor tool for acquiring volatile memory from Linux and Linux-based devices, including Android, with features like full memory captures and minimal process footprint.
Automated collection tool for incident response triage in Windows systems.
Custom built application for asynchronous forensic data presentation on an Elasticsearch backend, with upcoming features like Docker-based installation and new UI rewrite in React.
Recover event log entries from an image by heuristically looking for record structures.
Dump the contents of the location database files on iOS and macOS with output options like KML and CSV.