XAMN
The amount of data stored on mobile phones and other mobile devices is dramatically greater today than ever before. That makes the challenges of searching, filtering and analyzing that data more...
View ArticleAmped Five
Amped FIVE is the leading forensic image and video enhancement software and is acclaimed for its simplicity, ease-of-use and completeness. Amped FIVE is specifically designed for investigative,...
View ArticleAmped Authenticate
Amped Authenticate is a software package for forensic image authentication and tamper detection on digital photos. Authenticate provides a suite of different tools to determine whether an image is an...
View ArticleQUIN-C
Quin-C speeds data access, processing and analysis, and offers a highly customizable UI for more accurate, advanced investigations in less time. It’s simple, visual and powerful, with flexible...
View ArticleAChoir
AChoir is a Windows Live Response / Forensic artifact collection tool. AChoir has it's own scripting language designed specifically for Live Response. It can run locally or remotely, interactively...
View ArticleExtendsClass's SQLite browser
ExtendsClass's SQLite browser is an online visual tool to create, design, and edit SQLite database files. It is also possible to share its SQLite database.Category: Database ForensicsCategory URL:...
View ArticleAML Toolbox
Category: OSINTCategory URL: http://www.dfir.training/component/mtree/osint?Itemid=
View ArticleGiftStick
1-Click push forensics evidence to the cloud This project contains code which allows an inexperimented user to easily (one click) upload forensics evidence (such as some information about the system, a...
View Articledcfldd
dcfldd is an enhanced version of GNU dd with features useful for forensics and security. Category: Imaging and Image MountingCategory URL:...
View ArticleCustom File Type Categories
Personal settings for X-Ways ForensicsCategory: X-Ways 3rd Party ToolsCategory URL: http://www.dfir.training/component/mtree/by-developer/3rd-party?Itemid=
View Articlerds4xways
extract SHA1 from Reference Data Set (RDS) provided by the National Software Reference Library (NSRL) for X-Ways Forensics Category: X-Ways 3rd Party ToolsCategory URL:...
View Articlex-tension-c-sharp
An updated C# port of X-Ways X-Tensions API. Category: X-Ways 3rd Party ToolsCategory URL: http://www.dfir.training/component/mtree/by-developer/3rd-party?Itemid=
View ArticleGetData Forensic Explorer (FEX)
Forensic Explorer is an advanced forensic toolkit. With features such as Live Boot virtualization (Windows and Mac forensic images can be booted), Shadow Copy, view and extract Metadata, advanced File...
View ArticleSkadi
Skadi is a free, open source collection of tools that enables the collection, processing and advanced analysis of forensic artifacts and images. It scales to work effectively on laptops, desktops,...
View ArticleForensic Notes
Organize Critical and Complex Investigations with Forensic NotesCategory: Reports and Evidence ManagementCategory URL: http://www.dfir.training/component/mtree/reports-and-evidence-management?Itemid=
View ArticleCellebrite Group Chat Digital Forensics Tool
Group Chat Digital Forensics Tool was designed to visually display chat conversations as they are displayed on mobile devices, in chat bubbles. Cellebrite UFED PA is an extremely useful tool, but...
View ArticleDownload Excel Helper Tool
Group Chat Digital Forensics Tool was designed to visually display chat conversations as they are displayed on mobile devices, in chat bubbles. Cellebrite UFED PA is an extremely useful tool, but...
View ArticlePolito x-ways-reversinglabs-extensions
The ReversingLabs hash query plugin assists digital investigators with faster analysis results and makes the process more efficient when trying to find malicious activity. The goal is to filter out the...
View ArticleClik here to view.
grapl
Graph platform for Detection, Forensics, and Incident Response Grapl aims to describe a network, and actions taking place on that network, as a graph. The graph representation makes it easy to express...
View ArticleMemProcFS
The Memory Process File System: The Memory Process File System is an easy and convenient way of accessing physical memory as files a virtual file system. Easy trivial point and click memory analysis...
View Article