Directory: Most Rated Listings 

WinFE - Windows Forensic Environment

The Windows Forensic Environment (aka: Windows FE, WinFE) is a Windows-based, forensically sound, bootable operating system.  WinFE allows you to boot a computer system via external media, such as a USB, DVD, or CD, to a forensically sound Windows oper ...
Read More...

Category:Windows
Unique Pageviews12,190
Rating
Star10Star10Star10Star10Star10
Website Clicks8,030
Votes351
Belkasoft Evidence Center

"Belkasoft Evidence Center makes it easy for an investigator to search, analyze, store and share digital evidence found inside computer and mobile devices. The toolkit will quickly extract digital evidence from multiple so ...
Read More...

Category:Belkasoft
Unique Pageviews6,181
Rating
Star10Star10Star10Star10Star10
Website Clicks2,273
Votes83

Android 7.x (Nougat) image was created using a stock Android image from Google. Several popular applications (apps) were populated with user data utilizing the capabilities of each individual app.  The stock Android apps were also populated with user d ...
Read More...

Category:More Images!
Unique Pageviews6,737
Rating
Star10Star10Star10Star10Star10
Website Clicks2,673
Votes75

Forensic Explorer is an advanced forensic toolkit. With features such as Live Boot virtualization (Windows and Mac forensic images can be booted), Shadow Copy, view and extract Metadata, advanced File Carving, Hash Set importing, creation and analysis, ...
Read More...

Category:Forensic Suites
Unique Pageviews2,794
Rating
Star10Star10Star10Star10Star10
Website Clicks1,262
Votes29

"The VM is provided as a community resource..." github.com/philhagen/sof-elk/blob/master/VM_README.md

Unique Pageviews14,456
Rating
Star00Star00Star00Star00Star00
Website Clicks8,111
Votes29

Trapmine Hunter Popular

★★★★★
0 reviews
Trapmine Hunter

TRAPMINE Hunter is a complete platform to perform real-time threat hunting, live forensics, investigation and incident response on endpoints. Security and IT Operation Teams often look for a solution to perform remote inve ...
Read More...

Unique Pageviews2,290
Rating
Star10Star10Star10Star10Star10
Website Clicks929
Votes13

"X-Ways Forensics is an advanced work environment for computer forensic examiners and our flagship product. Runs under Windows XP/2003/Vista/2008/7/8/8.1/2012/10*, 32 Bit/64 Bit, standard/PE/FE. (Windows FE : winfe.wordpress.com) Compared to its compet ...
Read More...

Unique Pageviews6,087
Rating
Star10Star10Star10Star10Star10
Website Clicks2,635
Votes7

Agent Ransack

★★★★★
0 reviews

"Agent Ransack is a free software program for finding files on your PC or network drives.? " www.mythicsoft.com/

Category:Searching
Unique Pageviews3,123
Rating
Star10Star10Star10Star10Star10
Website Clicks1,832
Votes7

USB Detective Popular

★★★★★
0 reviews

USB Detective is an application for identifying, investigating, and reporting on USB storage devices that have been connected to a Windows system.  Using its consistency level color-coding, USB Detective gives you the ability to quickly distinguis ...
Read More...

Category:USB
Unique Pageviews3,213
Rating
Star10Star10Star10Star10Star10
Website Clicks1,622
Votes7

All-in-one evidence collector for Incident Response

Category:Data Collection
Unique Pageviews1,884
Rating
Star10Star10Star10Star10Star10
Website Clicks835
Votes6

Bitwar Data Recovery Software fully compatible with windows 10/8/7/Vista/XP, the software specialized in recovering docs, photo, video, music and archive. It offers easy 3 steps mode to recover lost or deleted files from SD card, memory stick, PC/Mac, ...
Read More...

Unique Pageviews2,940
Rating
Star10Star10Star10Star10Star10
Website Clicks1,772
Votes4

Harlan Carvey RegRipper Popular

★★★★½
0 reviews

What is RegRipper? RegRipper was created and maintained by Harlan Carvey. RegRipper, written in Perl, is the fastest, easiest, and best tool for registry analysis in forensics examinations. RegRipper has been downloaded over 5000 times and used by exam ...
Read More...

Category:Harlan Carvey
Unique Pageviews6,594
Rating
Star10Star10Star10Star10Star10
Website Clicks3,140
Votes4

Autopsy is a digital forensics platform and graphical interface to The Sleuth Kitand other digital forensics tools. It is used by law enforcement, military, and corporate examiners to investigate what happened on a computer. You can even use it to reco ...
Read More...

Category:Forensic Suites
Unique Pageviews4,776
Rating
Star10Star10Star10Star10Star10
Website Clicks2,167
Votes4

CAINE (Computer Aided INvestigative Environment) is an  Italian  GNU/Linux live distribution created as a Digital Forensics project
Currently the project manager is 
Nanni Bas ...
Read More...

Category:Linux
Unique Pageviews6,622
Rating
Star10Star10Star10Star10Star10
Website Clicks2,352
Votes3

evtx2json

★★★★★
0 reviews

evtx2json extracts events of interest from event logs, dedups them, and exports them to json.
Read More...
Category:Event Logs
Unique Pageviews1,261
Rating
Star10Star10Star10Star10Star10
Website Clicks782
Votes3

Paraben’s Internet & Chat Examiner is a new combination tool that can help with simple examinations of data associated with internet history and instant messaging. This software can be installed on the system that you want to examine or it can be s ...
Read More...

Category:Chat
Unique Pageviews1,757
Rating
Star10Star10Star10Star10Star10
Website Clicks473
Votes3

mac_int is an interpretive, modular DFIR intelligence and artifact correlation tool designed to automatically identify patterns and connections between parsed artifact data from the SQLite output of Yogesh Khatri’s open source tool, mac_apt...
Read More...

Unique Pageviews1,690
Rating
Star10Star10Star10Star10Star10
Website Clicks520
Votes3