Ghiro
Automated digital image forensics tool
MalConfScan is a Volatility plugin that extracts configuration data of known malware, searches for malware in memory images, and dumps configuration data. It also has a function to list strings to which malicious code refers. Supported malware families include Ursnif, Emotet, Smoke Loader, PoisonIvy, CobaltStrike, and many others. Additionally, it can dump decoded strings or DGA domains. MalConfScan also provides additional analysis by listing strings to which malicious code refers and decoding configuration data usually encoded by malware.
Automated digital image forensics tool
A collection of tools for extracting and analyzing information from .git repositories
A library and tools to access and analyze APFS file systems
Educational CTF-styled challenges for Memory Forensics.
Belkasoft offers cybersecurity solutions, training, and tools for businesses, law enforcement, and academia.
Accessing databases stored on a machine by the Chrome browser and dumping URLs found.