WinSearchDBAnalyzer
This tool can parse normal records and recover deleted records in Windows.edb, used in Windows Search. WinSearchDBAnalyzer can extract and analyze Windows.edb from live systems, showing more information than other tools, such as file categorization by extension, file hierarchy, and file contents. It can recover deleted records, works well on Windows 10, and can apply to UTC time, revealing data like Outlook Mail, OneNote, Internet History, Lnk list, Network Drive, Favorites, File and Folder Information, and Activity History.
FEATURES
ALTERNATIVES
Windows anti-forensics USB monitoring tool with the ability to shutdown the computer upon detecting the unplugging of a specified USB device.
A cybersecurity tool for collecting and analyzing forensic artifacts on live systems.
A command-line utility and Python package for mounting and unmounting various disk image formats with support for different volume systems and filesystems.
A Cross-Platform Forensic Framework for Google Chrome that allows investigation of history, downloads, bookmarks, cookies, and provides a full report.
A PowerShell-based incident response and live forensic data acquisition tool for Windows hosts.
A tool with advanced filtering capabilities for analyzing events based on time, path, weekday, and date.
Malscan is a tool to scan process memory for YARA matches and execute Python scripts.
Turbinia is an open-source framework for automating the running of common forensic processing tools to help with processing evidence in the Cloud.
PINNED
Fabric Platform by BlackStork
Fabric Platform is a cybersecurity reporting solution that automates and standardizes report generation, offering a private-cloud platform, open-source tools, and community-supported templates.
Mandos Brief Newsletter
Stay ahead in cybersecurity. Get the week's top cybersecurity news and insights in 8 minutes or less.
Wiz
Wiz Cloud Security Platform is a cloud-native security platform that enables security, dev, and devops to work together in a self-service model, detecting and preventing cloud security threats in real-time.
Adversa AI
Adversa AI is a cybersecurity company that provides solutions for securing and hardening machine learning, artificial intelligence, and large language models against adversarial attacks, privacy issues, and safety incidents across various industries.