A forensic research tool for gathering forensic traces on Android and iOS devices, supporting the use of public indicators of compromise.
The Network Appliance Forensic Toolkit is a set of tools designed to assist in the forensic analysis of network appliances, with capabilities such as using YARA with decoding options like decoder_add1, decoder_rol1, and decoder_xor1, as well as features for extracting frames from memory to PCAP files.
A forensic research tool for gathering forensic traces on Android and iOS devices, supporting the use of public indicators of compromise.
LiME is a Linux Memory Extractor tool for acquiring volatile memory from Linux and Linux-based devices, including Android, with features like full memory captures and minimal process footprint.
A powerful OSINT tool for creating custom templates for data extraction and analysis
A library for working with Windows NT data types, providing access and manipulation functions.
A portable volatile memory acquisition tool for Linux.
Exiv2 is a C++ library and command-line utility for image metadata manipulation.