Directory: Popular Listings 

"The VM is provided as a community resource..." github.com/philhagen/sof-elk/blob/master/VM_README.md

Unique Pageviews14,454
Rating
Star00Star00Star00Star00Star00
Website Clicks8,110
Votes29
WinFE - Windows Forensic Environment

The Windows Forensic Environment (aka: Windows FE, WinFE) is a Windows-based, forensically sound, bootable operating system.  WinFE allows you to boot a computer system via external media, such as a USB, DVD, or CD, to a forensically sound Windows oper ...
Read More...

Category:Windows
Unique Pageviews12,187
Rating
Star10Star10Star10Star10Star10
Website Clicks8,030
Votes351

Cellebrite UFED Reader Popular

0 reviews

"Cellebrite's UFED Reader is a free, executable application, purpose-designed for forensic examiners or investigators who need to share reports with other authorized personnel that may not use UFED Logical or Physical Anal ...
Read More...

Category:Cellebrite
Unique Pageviews9,157
Rating
Star00Star00Star00Star00Star00
Website Clicks3,623

Plist Explorer

0 reviews

The author shared the tool here: http://www.forensicfocus.com/Forums/viewtopic/t=8635/ Basic plist viewer, supports binary plists

Category:Misc
Unique Pageviews7,764
Rating
Star00Star00Star00Star00Star00
Website Clicks2,801

Bulk extractor Popular

0 reviews

"

bulk_extractor is a computer forensics tool that scans a disk image, a file, or a directory of files and extracts useful information without parsing the file system or f ...
Read More...

Category:Misc
Unique Pageviews7,763
Rating
Star00Star00Star00Star00Star00
Website Clicks3,409
Votes1

Metasploit Popular

★★★★★
0 reviews

"Knowing the adversary's moves helps you better prepare your defenses. Metasploit, backed by a community of 200,000 users and contributors, gives you that insight. It's the most impactful penetration testing solution on the planet. With it, uncover wea ...
Read More...

Unique Pageviews7,716
Rating
Star10Star10Star10Star10Star10
Website Clicks2,618
Votes1

RDP Bitmap Cache parser Popular

0 reviews

Extract BMC (RDP cached bitmap).

Category:Misc
Unique Pageviews7,363
Rating
Star00Star00Star00Star00Star00
Website Clicks2,911

Buscador is a Linux Virtual Machine that is pre-configured for online investigators.

Category:Linux
Unique Pageviews6,744
Rating
Star10Star10Star10Star10Star10
Website Clicks3,407
Votes1

Android 7.x (Nougat) image was created using a stock Android image from Google. Several popular applications (apps) were populated with user data utilizing the capabilities of each individual app.  The stock Android apps were also populated with user d ...
Read More...

Category:More Images!
Unique Pageviews6,728
Rating
Star10Star10Star10Star10Star10
Website Clicks2,672
Votes75

sets.py

0 reviews

Perform operations on sets: union, intersection, subtraction and exclusive or. A set is a list of lines in a file, or a stream of bytes in a file.

Category:Misc
Unique Pageviews6,641
Rating
Star00Star00Star00Star00Star00
Website Clicks1,981

CAINE (Computer Aided INvestigative Environment) is an  Italian  GNU/Linux live distribution created as a Digital Forensics project
Currently the project manager is 
Nanni Bas ...
Read More...

Category:Linux
Unique Pageviews6,618
Rating
Star10Star10Star10Star10Star10
Website Clicks2,351
Votes3

Harlan Carvey RegRipper Popular

★★★★½
0 reviews

What is RegRipper? RegRipper was created and maintained by Harlan Carvey. RegRipper, written in Perl, is the fastest, easiest, and best tool for registry analysis in forensics examinations. RegRipper has been downloaded over 5000 times and used by exam ...
Read More...

Category:Harlan Carvey
Unique Pageviews6,591
Rating
Star10Star10Star10Star10Star10
Website Clicks3,140
Votes4

Automated tool that collects volatile data from Windows, OSX, and *nix based operating systems

Category:Misc
Unique Pageviews6,578
Rating
Star00Star00Star00Star00Star00
Website Clicks1,982

Registry Explorer is a new approach to interacting with Registry hives. It has several unique capabilities not found in other programs.

Category:Eric Zimmerman
Unique Pageviews6,347
Rating
Star10Star10Star10Star10Star10
Website Clicks2,144
Votes1

Security Tools Popular

0 reviews

ADExplorer
ADInsight.chm
ADInsight
ADSSpy
AFind
AccessEnum
AdExplorer.chm
Audited
Autologon
Bginfo
Cacheset
Clockres
Contig
Coreinfo
DACLchk
DCode
DISKMON.HLP ...
Read More...

Unique Pageviews6,281
Rating
Star00Star00Star00Star00Star00
Website Clicks1,523
DEFT - Digital Evidence & Forensics Toolkit

DEFT (acronym for Digital Evidence & Forensics Toolkit) is a distribution made for Computer Forensics, with the purpose of running live on systems without tampering or corrupting devices (hard disks, pendrives, etc?) c ...
Read More...

Category:Linux
Unique Pageviews6,209
Rating
Star10Star10Star10Star10Star10
Website Clicks1,382
Votes1
Belkasoft Evidence Center

"Belkasoft Evidence Center makes it easy for an investigator to search, analyze, store and share digital evidence found inside computer and mobile devices. The toolkit will quickly extract digital evidence from multiple so ...
Read More...

Category:Belkasoft
Unique Pageviews6,177
Rating
Star10Star10Star10Star10Star10
Website Clicks2,273
Votes83

"X-Ways Forensics is an advanced work environment for computer forensic examiners and our flagship product. Runs under Windows XP/2003/Vista/2008/7/8/8.1/2012/10*, 32 Bit/64 Bit, standard/PE/FE. (Windows FE : winfe.wordpress.com) Compared to its compet ...
Read More...

Unique Pageviews6,087
Rating
Star10Star10Star10Star10Star10
Website Clicks2,634
Votes7

"FTK is a court-cited digital investigations platform built for speed, stability and ease of use. It provides comprehensive processing and indexing up front, so filtering and searching is faster than with any other product ...
Read More...

Category:Forensic Suites
Unique Pageviews6,004
Rating
Star10Star10Star10Star10Star00
Website Clicks2,401
Votes2

"When time is short and you need to acquire entire volumes or selected individual folders, EnCase Forensic Imager is your tool of choice. Based on trusted, industry-standard EnCase Forensic technology, EnCase Forensic Image ...
Read More...

Unique Pageviews5,927
Rating
Star00Star00Star00Star00Star00
Website Clicks2,292