ShadowCopy Analyzer Logo

ShadowCopy Analyzer

0
Free
Visit Website

ShadowCopy Analyzer is a tool designed for cybersecurity researchers to analyze and utilize the ShadowCopy technology, which allows the creation of backup snapshots of computer volumes or files, aiding in file recovery, ransomware mitigation, and system restoration. It provides functionalities such as creating, listing, and deleting ShadowCopies, as well as exporting them to VHD files. It is important to run the tool with Administrator privileges to access all its capabilities.

FEATURES

ALTERNATIVES

Python script to parse macOS MRU plist files into human-friendly format

Recover event log entries from an image by heuristically looking for record structures.

A network forensics toolkit that transforms network traffic data into graph-based representations for interactive analysis and visualization through a web interface.

A Mac OS X computer forensics tool for analyzing system artifacts, user files, and logs with reputation verification and log aggregation capabilities.

A Windows Registry hive extraction library that reads and writes Windows Registry 'hive' binary files.

wxHexEditor is a free hex editor / disk editor with various data manipulation operations and visualization functionalities.

A bash script for automating Linux swap analysis for post-exploitation or forensics purposes.

A tool for discovering, analyzing, and remedying sensitive data