usbrip Logo

usbrip

0
Free
Visit Website

usbrip is a forensics tool with a command line interface for tracking USB device artifacts on Linux machines. It analyzes Linux log data and can build USB event history tables with details like connected/disconnected date & time, vendor ID, product ID, manufacturer, serial number, and port. It can export data as JSON, generate a list of authorized USB devices, and search for violation events.

FEATURES

ALTERNATIVES

TestDisk is a free data recovery software that can recover lost partitions and undelete files from various file systems.

Turbinia is an open-source framework for automating the running of common forensic processing tools to help with processing evidence in the Cloud.

A python module for orchestrating content acquisitions and analysis via Amazon SSM.

A digital forensic tool for creating forensic images of computer hard drives and analyzing digital evidence.

Dump the contents of the location database files on iOS and macOS with output options like KML and CSV.

A script to assist in creating templates for VirtualBox to enhance VM detection evasion.

mac_apt is a versatile DFIR tool for processing Mac and iOS images, offering extensive artifact extraction capabilities and cross-platform support.

A tool for analyzing pentest screenshots using a convolutional neural network

CyberSecTools logoCyberSecTools

Explore the largest curated directory of cybersecurity tools and resources to enhance your security practices. Find the right solution for your domain.

Copyright © 2024 - All rights reserved