dc3dd
0 (0)
dc3dd is a patch to the GNU dd program, tailored for forensic acquisition with features like hashing and file verification.
Autopsy is a GUI-based digital forensics platform that allows users to efficiently analyze hard drives and smart phones, with a plug-in architecture for custom modules. It is built on top of The Sleuth Kit, a collection of command line tools and a C library for analyzing disk images and recovering files. The tools are widely used and have active community support, with commercial training, support, and custom development available. The platform is actively maintained, with regular releases and updates, including new features and bug fixes. Autopsy and The Sleuth Kit are widely used by digital forensics professionals around the world.
dc3dd is a patch to the GNU dd program, tailored for forensic acquisition with features like hashing and file verification.
Automated digital image forensics tool
Yara pattern matching tool for forensic investigations with predefined rules for magic headers in files and raw images.
A modified version of GNU dd with added features like hashing and fast disk wiping.
Fridump is an open source memory dumping tool using the Frida framework for dumping memory addresses from various platforms.
mac_apt is a versatile DFIR tool for processing Mac and iOS images, offering extensive artifact extraction capabilities and cross-platform support.