Directory: Popular Listings 

"The VM is provided as a community resource..." github.com/philhagen/sof-elk/blob/master/VM_README.md

Unique Pageviews14,456
Rating
Star00Star00Star00Star00Star00
Website Clicks8,111
Votes29
WinFE - Windows Forensic Environment

The Windows Forensic Environment (aka: Windows FE, WinFE) is a Windows-based, forensically sound, bootable operating system.  WinFE allows you to boot a computer system via external media, such as a USB, DVD, or CD, to a forensically sound Windows oper ...
Read More...

Category:Windows
Unique Pageviews12,190
Rating
Star10Star10Star10Star10Star10
Website Clicks8,030
Votes351

Cellebrite UFED Reader Popular

0 reviews

"Cellebrite's UFED Reader is a free, executable application, purpose-designed for forensic examiners or investigators who need to share reports with other authorized personnel that may not use UFED Logical or Physical Anal ...
Read More...

Category:Cellebrite
Unique Pageviews9,157
Rating
Star00Star00Star00Star00Star00
Website Clicks3,625

Plist Explorer

0 reviews

The author shared the tool here: http://www.forensicfocus.com/Forums/viewtopic/t=8635/ Basic plist viewer, supports binary plists

Category:Misc
Unique Pageviews7,768
Rating
Star00Star00Star00Star00Star00
Website Clicks2,801

Bulk extractor Popular

0 reviews

"

bulk_extractor is a computer forensics tool that scans a disk image, a file, or a directory of files and extracts useful information without parsing the file system or f ...
Read More...

Category:Misc
Unique Pageviews7,767
Rating
Star00Star00Star00Star00Star00
Website Clicks3,411
Votes1

Metasploit Popular

★★★★★
0 reviews

"Knowing the adversary's moves helps you better prepare your defenses. Metasploit, backed by a community of 200,000 users and contributors, gives you that insight. It's the most impactful penetration testing solution on the planet. With it, uncover wea ...
Read More...

Unique Pageviews7,719
Rating
Star10Star10Star10Star10Star10
Website Clicks2,619
Votes1

RDP Bitmap Cache parser Popular

0 reviews

Extract BMC (RDP cached bitmap).

Category:Misc
Unique Pageviews7,369
Rating
Star00Star00Star00Star00Star00
Website Clicks2,913

Buscador is a Linux Virtual Machine that is pre-configured for online investigators.

Category:Linux
Unique Pageviews6,747
Rating
Star10Star10Star10Star10Star10
Website Clicks3,408
Votes1

Android 7.x (Nougat) image was created using a stock Android image from Google. Several popular applications (apps) were populated with user data utilizing the capabilities of each individual app.  The stock Android apps were also populated with user d ...
Read More...

Category:More Images!
Unique Pageviews6,738
Rating
Star10Star10Star10Star10Star10
Website Clicks2,673
Votes75

sets.py

0 reviews

Perform operations on sets: union, intersection, subtraction and exclusive or. A set is a list of lines in a file, or a stream of bytes in a file.

Category:Misc
Unique Pageviews6,642
Rating
Star00Star00Star00Star00Star00
Website Clicks1,981

CAINE (Computer Aided INvestigative Environment) is an  Italian  GNU/Linux live distribution created as a Digital Forensics project
Currently the project manager is 
Nanni Bas ...
Read More...

Category:Linux
Unique Pageviews6,623
Rating
Star10Star10Star10Star10Star10
Website Clicks2,352
Votes3

Harlan Carvey RegRipper Popular

★★★★½
0 reviews

What is RegRipper? RegRipper was created and maintained by Harlan Carvey. RegRipper, written in Perl, is the fastest, easiest, and best tool for registry analysis in forensics examinations. RegRipper has been downloaded over 5000 times and used by exam ...
Read More...

Category:Harlan Carvey
Unique Pageviews6,594
Rating
Star10Star10Star10Star10Star10
Website Clicks3,140
Votes4

Automated tool that collects volatile data from Windows, OSX, and *nix based operating systems

Category:Misc
Unique Pageviews6,584
Rating
Star00Star00Star00Star00Star00
Website Clicks1,983

Registry Explorer is a new approach to interacting with Registry hives. It has several unique capabilities not found in other programs.

Category:Eric Zimmerman
Unique Pageviews6,351
Rating
Star10Star10Star10Star10Star10
Website Clicks2,145
Votes1

Security Tools Popular

0 reviews

ADExplorer
ADInsight.chm
ADInsight
ADSSpy
AFind
AccessEnum
AdExplorer.chm
Audited
Autologon
Bginfo
Cacheset
Clockres
Contig
Coreinfo
DACLchk
DCode
DISKMON.HLP ...
Read More...

Unique Pageviews6,286
Rating
Star00Star00Star00Star00Star00
Website Clicks1,525
DEFT - Digital Evidence & Forensics Toolkit

DEFT (acronym for Digital Evidence & Forensics Toolkit) is a distribution made for Computer Forensics, with the purpose of running live on systems without tampering or corrupting devices (hard disks, pendrives, etc?) c ...
Read More...

Category:Linux
Unique Pageviews6,214
Rating
Star10Star10Star10Star10Star10
Website Clicks1,383
Votes1
Belkasoft Evidence Center

"Belkasoft Evidence Center makes it easy for an investigator to search, analyze, store and share digital evidence found inside computer and mobile devices. The toolkit will quickly extract digital evidence from multiple so ...
Read More...

Category:Belkasoft
Unique Pageviews6,181
Rating
Star10Star10Star10Star10Star10
Website Clicks2,273
Votes83

"X-Ways Forensics is an advanced work environment for computer forensic examiners and our flagship product. Runs under Windows XP/2003/Vista/2008/7/8/8.1/2012/10*, 32 Bit/64 Bit, standard/PE/FE. (Windows FE : winfe.wordpress.com) Compared to its compet ...
Read More...

Unique Pageviews6,088
Rating
Star10Star10Star10Star10Star10
Website Clicks2,635
Votes7

"FTK is a court-cited digital investigations platform built for speed, stability and ease of use. It provides comprehensive processing and indexing up front, so filtering and searching is faster than with any other product ...
Read More...

Category:Forensic Suites
Unique Pageviews6,007
Rating
Star10Star10Star10Star10Star00
Website Clicks2,401
Votes2

"When time is short and you need to acquire entire volumes or selected individual folders, EnCase Forensic Imager is your tool of choice. Based on trusted, industry-standard EnCase Forensic technology, EnCase Forensic Image ...
Read More...

Unique Pageviews5,932
Rating
Star00Star00Star00Star00Star00
Website Clicks2,295