PassMark OSForensics Logo

PassMark OSForensics

0
Free
Visit Website

PassMark OSForensics is a digital investigation tool that allows users to extract forensic data from computers quickly and easily, uncovering hidden information inside a PC. It enables users to discover relevant data faster through high-performance file searching and indexing, extract passwords, decrypt files, and recover deleted files from various operating systems. Additionally, it helps in identifying evidence and suspicious activity through hash matching and drive signature analysis features, as well as automatically creating a timeline of user activity. With its 360° Case Management Solution, users can manage their entire digital investigation, build custom reports, and attach reports from other tools. OSForensics also offers a collection of tools like OSFMount and OSFClone for mounting disk images and creating/cloning raw disk images, respectively.

FEATURES

ALTERNATIVES

Scripts to automate the process of enumerating a Linux system through a Local File Inclusion (LFI) vulnerability.

Malscan is a tool to scan process memory for YARA matches and execute Python scripts.

Dump the contents of the location database files on iOS and macOS with output options like KML and CSV.

A library and tools to access and manipulate VMware Virtual Disk (VMDK) files.

Recover event log entries from an image by heuristically looking for record structures.

wxHexEditor is a free hex editor / disk editor with various data manipulation operations and visualization functionalities.

CyLR is a Live Response Collection tool for quickly and securely collecting forensic artifacts from hosts with NTFS file systems.

Toolkit for performing acquisitions on iOS devices with logical and filesystem acquisition support.