Tools

618 results - showing 321 - 340
« 1 ... 12 13 14 15 16 17 18 19 20 21 ... »

Tools

License Type
Free
Developer
Guidance/OpenText

This script is designed to validate the prescence of EnCase Endpoint Investigator agents running on multiple endpoints.

Tools

License Type
Free
Developer
Guidance/OpenText

This EnPack scans sector 0 and the first sector of any identifiable partitions for known encryption markers in all evidence files/devices in a case and reports findings to the console tab as well as bookmarks.

Tools

License Type
Free
Developer
Guidance/OpenText

This EnScript was original designed to aid in the triage and processing of multiple hosts by multiple examiners while conducting Incident Response & Investigations and quickly collate all the data together. This can also be used to create simple timelines.

Tools

License Type
Free
Developer
Guidance/OpenText

Based on the v6 ‘EnLaunchy’ EnScript written by James Habben, the superiorly named EnScript Finder allows you to search two different folders (your local folders as well as a shared forensic team folder for example) using the filename or path and keywords. Results are dynamic and you can launch any EnScript by double-clicking its name.

Tools

License Type
Free
Developer
Guidance/OpenText

This plugin adds a number of enhancements to the EnScript editor window.

Tools

License Type
Free
Developer
Guidance/OpenText

EnParse performs analysis inside multiple evidence files at once without extracting all the files. The script runs EnCase processing module and exports metadata to any of the following formats: SQL Server, MS Access and Text file. The script prepares an Excel report of the user’s choice at the end of the process.

Tools

License Type
Free
Developer
Guidance/OpenText

This script is designed to identify newly-introduced EnScript types. This is achieved by comparing the EnScript types from an 'old' version of EnCase to those of a 'new' version.

Tools

License Type
Free
Developer
Guidance/OpenText

EITT was created to assist DFIR investigators with OSTs. The toolkit comes more than 15 integrated modules allowing an investigator to quickly locate and annihilate cyber threats against their enterprise. EITT was developed by the Professional Services team at Guidance Software to be a must-have addition to any DFIR workflow.

Tools

License Type
Free
Developer
Guidance/OpenText

This is a proof-of-concept EnScript designed to extract data from one or more EVF2 evidence-file segments in the event of a hardware or software failure.

Tools

License Type
Free
Developer
Guidance/OpenText

This script locates deleted MS Windows EVTX log records . The script works by looking for the event-log chunks that when taken with the event-log header make-up a complete EVTX log-file. The reason for not searching for individual records is that while a chunk is a self-contained entity, the records in a chunk are not—EVTX log-files use a template system in order to save space. This means that even though it's possible to find a deleted record by searching for its signature using a GREP keyword there's a good chance that what follows won't be the complete record and that some of the record's data will most likely be stored at a previous location in the associated chunk.

Tools

License Type
Free
Developer
Guidance/OpenText

This EnScript is designed to convert Apple Mail application EMLX files to EML files that can be opened in a program such as Mozilla Thunderbird.

Tools

License Type
Free
Developer
Guidance/OpenText

Dumpkeychain is a Windows command-line utility for decrypting credentials from Mac OS X system and user keychains given the associated system-key-file or keychain-password respectively. Mac OS X user keychains often contain many Internet account passwords login credentials and secure notes. The system keychain contains Wi-Fi passwords and other shared credentials.

Tools

License Type
Free
Developer
Guidance/OpenText

This EnScript will search for all .com, .edu, .org, .net, and .gov e-mail addresses in a case. E-mail addresses will be bookmarked and a summary file will be created in your Export folder. The summary file is a comma separated list that can be opened using Microsoft Excel. The summary file will list each e-mail address contained in the case and the number of occurrences for that e-mail address.

Tools

License Type
Free
Developer
Guidance/OpenText

This EnScript will audit the space of all devices in the case.  A table will be built in the bookmarks tab as a summary to show usage of devices in the case. Additional tables for each device will be built in the bookmarks to account for all space on each drive. 

Tools

License Type
Free
Developer
Guidance/OpenText

This script uses an embedded copy of the ssdeep tool originally written by Jesse Kornblum (https://ssdeep-project.github.io/ssdeep/index.html) to identify similarities in the textual content of tagged items or those items that are entries selected in the current view. The items in question do not have to be of the same type.

Tools

License Type
Free
Developer
Guidance/OpenText

This script is designed to recover deleted database-files last modified by SQLite version 3.7 or later.

Tools

License Type
Free
Developer
Guidance/OpenText

This script parsers user-specified .DS_Store files created by Mac OS X. One of the most common reasons for wanting to examine these files is to determine the original name and path of files/folders in the Trash folder.

Tools

License Type
Free
Developer
Guidance/OpenText

This EnScript allows the user to upload remote node snapshot information from Sweep Enterprise (EnCase Enterprise) into IncMan-NG the Incident Response Management from DFLabs ( www.dfresponse.com.com).

Tools

License Type
Free
Developer
Guidance/OpenText

This EnScript allows the user to upload evidence and bookmarked details into DIM-NG, the Forensic Case Management from DFLabs (www.digitalinvestigationmanager.com).

Tools

License Type
Free
Developer
Guidance/OpenText

This script finds credit card numbers which are valid according to the Luhn test.

618 results - showing 321 - 340
« 1 ... 12 13 14 15 16 17 18 19 20 21 ... »