Acquire, triage, and investigate remote evidence via portable iSCSI readonly access. The project is based on the work of TalAloni and Fujita, aiming to provide a command line, open-source tool for forensic acquisition and analysis scenarios.
FEATURES
EXPLORE BY TAGS
SIMILAR TOOLS
A library to access FileVault Drive Encryption (FVDE) encrypted volumes on Mac OS X systems.
A library to access and parse Windows XML Event Log (EVTX) format, useful for digital forensics and incident response.
A library for accessing and parsing Microsoft Internet Explorer cache files (index.dat) to extract URLs, timestamps, and cached content for digital forensic analysis.
Exterro is a data risk management platform that optimizes e-discovery, digital forensics, and cybersecurity compliance operations.
A command-line tool for creating hex dumps, converting between binary and human-readable representations, and patching binary files.
A library for accessing and parsing Extensible Storage Engine (ESE) Database Files used by Microsoft applications like Windows Search, Exchange, and Active Directory for forensic analysis purposes.
A PowerShell-based incident response and live forensic data acquisition tool for Windows hosts.
Zenduty's platform provides real-time operational health monitoring and incident response orchestration to improve incident response times and build a solid on-call culture.