xxUSBSentinel
Windows anti-forensics USB monitoring tool. First you map a Key USB device - it can be a mouse, keyboard, flash drive etc. It will ask you to plug and unplug your device. Then the program remembers the device ID (VID:PID). After that you can arm the Sentinel and it would listen for device disconnect events and if your Key USB device is unplugged - xxUSBSentinel will shutdown your computer the fast way. The whole purpose of that is to make recovering your encrypted drive keys almost impossible. WARNING: This software will not encrypt or protect your data/drives, its only aim is to help you improve your operation security. Features Monitor and log all types of USB devices connecting and disconnecting Export logs to file Resolve device VID:PID Map a device to be a Key USB device Fast shutdown on Key USB device unplug Control everything from GUI or from the traybar icon Test mode option for practice Screenshots Installation No installation is needed, download release or build it yourself. Dependencies Currently it depends on LibUsbDotNet, but in future releases the library will be packed with the executable: LibUsbDotNet.dll Compatability The should work on most Windows systems.
FEATURES
EXPLORE BY TAGS
SIMILAR TOOLS
A digital forensics tool that provides read-only access to file-system objects from various storage media types and file formats.
A PowerShell-based incident response and live forensic data acquisition tool for Windows hosts.
A command-line tool for creating hex dumps, converting between binary and human-readable representations, and patching binary files.
A library to access and parse Windows XML Event Log (EVTX) format, useful for digital forensics and incident response.
Free software for extracting Microsoft cabinet files, supporting all features and formats of Microsoft cabinet files and Windows CE installation files.
A library for accessing and parsing Extensible Storage Engine (ESE) Database Files used by Microsoft applications like Windows Search, Exchange, and Active Directory for forensic analysis purposes.
A library for accessing and parsing Microsoft Internet Explorer cache files (index.dat) to extract URLs, timestamps, and cached content for digital forensic analysis.
Zenduty's platform provides real-time operational health monitoring and incident response orchestration to improve incident response times and build a solid on-call culture.
PINNED
A cybersecurity platform that offers vulnerability scanning, Windows Defender and 3rd party AV management, and MFA compliance reporting, among other features.
Proton Pass is a cross-platform password manager that provides encrypted storage, password generation, and security monitoring features with integrated 2FA and dark web monitoring capabilities.
NordVPN is a commercial VPN service that encrypts internet connections and hides IP addresses through a global network of servers, featuring integrated threat protection and multi-device support.
Fractional CISO service that helps B2B companies implement security leadership to win enterprise deals, achieve compliance, and develop strategic security programs.