Acquire, triage, and investigate remote evidence via portable iSCSI readonly access. The project is based on the work of TalAloni and Fujita, aiming to provide a command line, open-source tool for forensic acquisition and analysis scenarios.
This tool is not verified yet and doesn't have listed features.
Did you submit the verified tool? Sign in to add features.
Are you the author? Claim the tool by clicking the icon above. After claiming, you can add features.
A command-line utility and Python package for mounting and unmounting various disk image formats with support for different volume systems and filesystems.
A reverse engineering framework with a focus on usability and code cleanliness
A library to access the Windows New Technology File System (NTFS) format with read-only support for NTFS versions 3.0 and 3.1.
Easy-to-use live forensics toolbox for Linux endpoints with various capabilities such as process inspection, memory analysis, and YARA scanning.
A library to access and manipulate RAW image files.
TestDisk is a free data recovery software that can recover lost partitions and undelete files from various file systems.