What is the pricing for MFTExtractor?

MFTExtractor is a free Security Operations tool. This makes it accessible for organizations of all sizes, from startups to enterprises. Visit https://github.com/aarsakian/MFTExtractor/ for download and installation instructions.

What are alternatives to MFTExtractor?

Popular alternatives to MFTExtractor include: 1. ElcomSoft Advanced EFS Data Recovery - Decrypts EFS-protected files on NTFS volumes across Windows versions. (Commercial) 2. libfsntfs - A library to access the Windows New Technology File System (NTFS) format with read-only support for NTFS versions 3.0 and 3.1. (Free) 3. MFT_Browser - Recreates the File/Directory tree structure from an extracted $MFT file with detailed record mapping and analysis capabilities. (Free) 4. nTimetools - A suite of console tools for working with timestamps in Windows with 100-nanosecond precision. (Free) 5. python-ntfs - Open source Python library for NTFS analysis (Free) Compare these tools and more at https://cybersectools.com/categories/security-operations

Who should use MFTExtractor?

MFTExtractor is for security teams and organizations that need NTFS. It's particularly suitable for small to medium-sized teams looking for cost-effective solutions. Other Security Operations tools can be found at https://cybersectools.com/categories/security-operations

MFTExtractor

A tool for parsing and extracting information from the Master File Table of NTFS file systems.

Free18

Visit Website

Compare

Free18

MFTExtractor

A tool for parsing and extracting information from the Master File Table of NTFS file systems.

Visit Website

Data verified Apr 2026

Explore Security Operations 48 Alternatives Compare Stacks Market Map Explore All Tools

ADYour product here. Reach security decision-makers.Launch a campaign

MFTExtractor Description

Security Operations/Digital Forensics and Incident Response

Ntfs

A Parser of Master File Table NTFS file system. Using this tool you can explore $MFT NTFS and its file system attributes. You can selectively extract filesystem information of record or for a range of records. In addition, you can export the contents of files. Exporting files can be achieved either by mounting the evidence and providing its physical drive order and partition number or by using the acquired forensic image (Expert Witness Format), or virtual machine disk format. Examples you can now explore NTFS by providing physical drive number and partition number e.g. -physicaldrive 0 -partition 1 translates to \.\

MFTExtractor Description

Security Operations/Digital Forensics and Incident Response

Ntfs

MFTExtractor FAQ

Common questions about MFTExtractor including features, pricing, alternatives, and user reviews.

MFTExtractor is A tool for parsing and extracting information from the Master File Table of NTFS file systems. It is a Security Operations solution designed to help security teams with NTFS.

Have more questions? Browse our categories or search for specific tools.