Silk Guardian Logo

Silk Guardian

0
Free
Visit Website

Silk Guardian is an anti-forensic Linux Kernel Module (LKM) kill-switch that monitors USB ports for changes, deletes files, and shuts down the computer. It was inspired by usbkill and serves as a fun project for learning. The tool is designed to prevent unauthorized access to the system and enhance security, especially in scenarios where physical access to the machine is a concern. To run Silk Guardian, compile the module using 'make', load it using 'sudo insmod silk.ko', and ensure the linux-headers package is installed. It is recommended to use (partial) disk encryption in conjunction with this tool for enhanced protection.

FEATURES

ALTERNATIVES

A library to access the Expert Witness Compression Format (EWF) for digital forensics and incident response.

Windows anti-forensics USB monitoring tool with the ability to shutdown the computer upon detecting the unplugging of a specified USB device.

A free, open source collection of tools for forensic artifact and image analysis.

A network forensics toolkit that transforms network traffic data into graph-based representations for interactive analysis and visualization through a web interface.

A tool for creating compact Linux memory dumps compatible with popular debugging tools.

A framework for orchestrating forensic collection, processing, and data export.

Online platform for image steganography analysis

TestDisk is a free data recovery software that can recover lost partitions and undelete files from various file systems.