usbdeath
usbdeath is an anti-forensic tool that manipulates udev rules for known USB devices and performs actions on unknown USB device insertion or specific USB device removal.
Mobile Verification Toolkit (MVT) is a collection of utilities developed by the Amnesty International Security Lab to simplify and automate the process of gathering forensic traces on Android and iOS devices, aiding in the identification of potential compromises. It supports the use of public indicators of compromise (IOCs) to scan for traces of targeting or infection by known spyware campaigns. Note that MVT is a forensic research tool intended for technologists and investigators with an understanding of digital forensics and command-line tools, not for end-user self-assessment.
usbdeath is an anti-forensic tool that manipulates udev rules for known USB devices and performs actions on unknown USB device insertion or specific USB device removal.
ForensicMiner, Redefine DFIR Automations
A forensic tool to find hidden processes and TCP/UDP ports by rootkits or other hidden techniques.
Open source Python library for NTFS analysis
A tool for discovering, analyzing, and remedying sensitive data
Free software for extracting Microsoft cabinet files, supporting all features and formats of Microsoft cabinet files and Windows CE installation files.