Categories

010 Editor

0 reviews

Professional text and hex editing with Binary Templates technology

Category:Hex Editors
Unique Pageviews2,602
Rating
Star00Star00Star00Star00Star00
Website Clicks1,539

4Discovery Drive Digest Popular

0 reviews

"Drive Digest was created to automate the numerous requests we received to summarize the contents of a hard drive or document collection." www.4discovery.com

Category:4Discovery
Unique Pageviews3,017
Rating
Star00Star00Star00Star00Star00
Website Clicks1,558

4Discovery EWF MetaEditor Popular

0 reviews

"EnCase?s Evidence Files (.E01) are similar to other documents in that they have structured internal metadata describing the evidence item, examiner, date acquired, etc?

EWF Met ...
Read More...

Category:4Discovery
Unique Pageviews3,908
Rating
Star00Star00Star00Star00Star00
Website Clicks1,267

4Discovery Link Parser Popular

0 reviews

"Whatever you decide to call them, Link Files, Shortcut Files, or Shell Link Items, they are valuable forensic artifacts. In addition the the filesystem MAC times, the internal structure of the link file can reveal huge am ...
Read More...

Category:4Discovery
Unique Pageviews3,681
Rating
Star00Star00Star00Star00Star00
Website Clicks1,361

"It?s no secret that many document types can contain metadata that can reveal a wealth of information. This data can reveal information about the history, usage, authors, and contributors of a document. This data can be a g ...
Read More...

Category:4Discovery
Unique Pageviews2,975
Rating
Star00Star00Star00Star00Star00
Website Clicks1,264

"Microsoft Windows tracks user window viewing preferences specific to Windows Explorer. Tracked items include the size, view, icon, and position of a folder from Windows Explorer. This information is referred to as ShellBa ...
Read More...

Category:4Discovery
Unique Pageviews3,382
Rating
Star00Star00Star00Star00Star00
Website Clicks1,588

4Discovery USB Historian Popular

0 reviews

"The Microsoft Windows operating systems records artifacts when USB removable storage devices (thumb drives, iPods, digital cameras, external HDD, etc.) are connected. These artifacts can be found in Plug and Play (PnP) lo ...
Read More...

Category:4Discovery
Unique Pageviews4,709
Rating
Star00Star00Star00Star00Star00
Website Clicks1,505

"The X-Tension allows an examiner to select any two files in X-Ways and quickly send them to Beyond Compare for review.?Beyond Compare, from Scooter Software, is a 3rd party file comparison tool that has built-in support/viewers for the comparison of b ...
Read More...

Category:4Discovery
Unique Pageviews3,021
Rating
Star00Star00Star00Star00Star00
Website Clicks1,674

"This X-Tension allows an examiner to check the status of a file via the VirusTotal API directly through X-Ways and get the status in the X-Ways messages window." ?bitbucket.org/4Discovery/x-ways-virustotal-x-tension ...
Read More...

Category:4Discovery
Unique Pageviews3,164
Rating
Star00Star00Star00Star00Star00
Website Clicks1,462

It is based on bulk_extractor (https://github.com/simsong/bulk_extractor) and add scanners for record carving

Category:Misc
Unique Pageviews2,437
Rating
Star00Star00Star00Star00Star00
Website Clicks1,206

"Differential Analysis ...
Read More...

Category:504ensicsLabs
Unique Pageviews2,389
Rating
Star10Star00Star00Star00Star00
Website Clicks1,303
Votes1

"LiME (formerly DMD) is a Loadable Kernel Module (LKM), which allows the acquisition of volatile memory from Linux and Linux-based devices, such as those powered by Android. The tool supports acquiring memory either to the ...
Read More...

Category:504ensicsLabs
Unique Pageviews2,350
Rating
Star00Star00Star00Star00Star00
Website Clicks1,224

This is a copy of the Registry Decoder reposit ...
Read More...
Category:Registry
Unique Pageviews2,078
Rating
Star00Star00Star00Star00Star00
Website Clicks1,114