Softrace
0 (0)
A simple Golang application for storing NIST National Software Reference Library Reference Data Set (NSRL RDS) with md5 and sha1 hash lookup searches.
NTFS-Linker is a tool developed by Stroz Friedberg for parsing NTFS journal files, $Logfile, and $MFT from a directory of input or a disk image, automatically extracting relevant NTFS files and organizing them into a structured output directory.
A simple Golang application for storing NIST National Software Reference Library Reference Data Set (NSRL RDS) with md5 and sha1 hash lookup searches.
DFIR ORC Documentation provides detailed instructions for setting up the build environment and deploying the tool.
A framework for orchestrating forensic collection, processing, and data export.
A software utility with forensic tools for smartphones, offering powerful data extraction and decoding capabilities.
A Windows Registry hive extraction library that reads and writes Windows Registry 'hive' binary files.
Python script to parse the NTFS USN Change Journal.