PassMark OSForensics Logo

PassMark OSForensics

0
Free
Visit Website

PassMark OSForensics is a digital investigation tool that allows users to extract forensic data from computers quickly and easily, uncovering hidden information inside a PC. It enables users to discover relevant data faster through high-performance file searching and indexing, extract passwords, decrypt files, and recover deleted files from various operating systems. Additionally, it helps in identifying evidence and suspicious activity through hash matching and drive signature analysis features, as well as automatically creating a timeline of user activity. With its 360° Case Management Solution, users can manage their entire digital investigation, build custom reports, and attach reports from other tools. OSForensics also offers a collection of tools like OSFMount and OSFClone for mounting disk images and creating/cloning raw disk images, respectively.

FEATURES

ALTERNATIVES

Review of various MFT parsers used in digital forensics for analyzing NTFS file systems.

View physical memory as files in a virtual file system for easy memory analysis and artifact access.

A cybersecurity tool for collecting and analyzing forensic artifacts on live systems.

A library to access and manipulate RAW image files.

Open source tool for generating YARA rules about installed software from a running OS.

usbdeath is an anti-forensic tool that manipulates udev rules for known USB devices and performs actions on unknown USB device insertion or specific USB device removal.

Browse and analyze iPhone/iPad backups with detailed file properties and various viewers.

OSINTLeak is a tool for discovering and analyzing leaked sensitive information across various online sources to identify potential security risks.

PINNED