Probable Wordlists
Wordlists sorted by probability originally created for password generation and testing - make sure your passwords aren't popular! Category: Password ListsCategory URL:...
View ArticleWeakpass
For any kind of bruteforce find wordlists or unleash the power of them all at once! Category: Password ListsCategory URL: http://www.dfir.training/component/mtree/cryptography/password-lists?Itemid=
View ArticleMetaploit
Metaploit framework installers are built nightly for those wanting to track the bleeding edge, or those who would like a simplified Metasploit framework setup experience. These packages are built for...
View ArticleTimestomp
Timestomp allows changing, deleting, or modifying NTFS Modified, Accessed, Created, and Entry Modified file time stamps.Category: Anti/Counter ForensicsCategory URL:...
View ArticleSecurity Tools
ADExplorer ADInsight.chmADInsight ADSSpy AFind AccessEnum AdExplorer.chmAudited Autologon Bginfo Cacheset Clockres Contig Coreinfo DACLchk DCode DISKMON.HLPDMON.SYSDarkNamer Dbgview Desktops...
View ArticleRegRipper Launcher
The RegRipper Launcher EnScript does just that, launches RegRipper directly from EnCase. Select the desired registries in EnCase, run the RegRipper Launcher from the EnScript drop down and view the...
View ArticleClik here to view.
BitRaser for File
BitRaser for File is a complete file erasure tool which wipes all files, folders, volumes permanently. The software supports 17 international eraser algorithm including US DoD 5220.2 M (3/7 pass) &...
View ArticleEric Zimmerman WxTCmd
WxTCmd is a parser for the new Windows 10 Timeline feature database.Category: Eric ZimmermanCategory URL: http://www.dfir.training/component/mtree/by-developer/eric-zimmerman?Itemid=
View ArticleTwitter Forensic Investigator
Twitter forensic investigator is a powerful social media investigation platform.It is the only platform that captures realtime tweets, bookmarking capability and capture screenshot each tweet with...
View ArticlePaliscope
Online investigation framework (new in April '18) from https://www.safersociety.com Community edition = Free Work = Not freeCategory: Mega ToolsCategory URL:...
View ArticleClik here to view.
Truxton Forensics
Truxton allows you to ingest all of the media pertinent to an investigation into a single platform, making it easy for multiple investigators to review everything simultaneously. This approach allows...
View ArticleBitwar
Bitwar Data Recovery Software fully compatible with windows 10/8/Vista/XP,Specialized in Docs, Photo, Video, Music and Archive , Easy 3 steps Recover from SD Card, Memory Stick, PC/MAC, Hard Drive,...
View ArticleClik here to view.
gcpartners/ETLParser
Binary commandline executable to parse ETL files. ETLs or Event Trace Logs are ETW trace sessions that are stored to disk. Event Tracing for Windows was introduced in Windows 2000 and is still going...
View Articlenerdiosity/DNSplice
DNSplice was created by Shelly Giesbrecht (nerdiosity) to assist incident responders to quickly and easily parse client query events from ugly DNS logs for Microsoft Windows 2003/2008R2 (DNS debug log)...
View ArticleStellar Phoenix Windows Data Recovery - Free Edition
Best rated free windows data recovery software to recover permanently deleted files, photos, videos, documents from different storage devices such as internal & external hard drives, pen drives,...
View Articleafro (APFS file recovery)
afro can parse APFS images. It not only extracts the latest data but also older versions of the files.Category: Forensic Utilities - MacCategory URL:...
View ArticleClik here to view.
Omnibus
Omnibus is an interactive command line application for collecting and managing IOCs/artifacts (IPs, Domains, Email Addresses, Usernames, and Bitcoin Addresses), enriching these artifacts with OSINT...
View ArticleBeginner Malware Reversing Challenges
The purpose of these challenges is to familiarize beginners with common malware techniques. Don’t worry if you can’t complete a challenge, I will soon be creating a video explaining each one in detail....
View ArticleBerkeley DeepDive
Explore 100,000 HD video sequences of over 1,100-hour driving experience across many different times in the day, weather conditions, and driving scenarios. Our video sequences also include GPS...
View ArticleClik here to view.
Magnet Process Capture
Magnet Process Capture is a free tool that allows you to capture memory from individual running processes. Whether you’re short on time or are only interested in specific processes, Magnet Process...
View Article