Forensic ToolsRSS

Forensic Tools

 These are tools for analyzing a breach in security in some way.  Typically they are used for collecting data about the breach after the fact, or analyzing software to see how it performs the attack.  Many reverse engineering tools will be listed here, as well as forensic recovery tools.

 

Other information about Forensic Tools

 

Oxygen Software Company

Besides the general data extracted by similar products, Oxygen Forensic Suite can extract a lot of unique information Using low-level protocols allows the program to extract: phone basic information and SIM-card data, contacts list, caller groups, speed ...

ModifiedNever
Compelson Labs

MOBILedit! Forensic is highly rated by the National Institute of Standards and Technology, MOBILedit! Forensic is used in over 70 countries. Simply connect a phone and MOBILedit! Forensic extracts all content and generates a forensic report ready for cour ...

ModifiedNever
Open Source
Pricing Model

NetSleuth is a free network forensics and pcap file analyser. It provides offline analysis for incident response, and live "silent portscanning" functionality. Features: An easy realtime overview of what devices and what people are connected to any Wi ...

Modified
Commercial
Pricing Model

Cellebrite's UFED Series consists of the mobile forensic tools for data scrutiny, invaluable for any investigation. Cellebrite presents a range of applications purpose-designed for the critical examination of mobile device data. UFED Physical AnalyzerUFE ...

Modified
GetData Forensics
Commercial
Pricing Model

Forensic Explorer is fully featured computer forensics software that is an alternative to FTK or EnCase. It is non-invasive and allows examiners to access, view, and search large volumes of electronic evidence quickly and efficiently. Forensic Explorer h ...

Modified
Commercial
Pricing Model

  A multi-platform LIVE side for three environments; Mac OS X, Windows and Linux with one simple to use interface Make forensic images of all internal devices Make a forensic image of physical memory (32 and 64 bit) Determine if disk level en ...

Modified
Helix3 Pro
Elcomsoft Co. Ltd
Commercial
Pricing Model

Elcomsoft Phone Password Breaker enables forensic access to password-protected backups for smartphones and portable devices based on RIM BlackBerry and Apple iOS platforms. The password recovery tool supports all Blackberry smartphones as well as Apple de ...

Modified
Phone Password Breaker
Elcomsoft Co. Ltd
Commercial
Pricing Model

Perform the complete forensic analysis of encrypted disks and volumes protected with desktop and portable versions of BitLocker, PGP and TrueCrypt. Elcomsoft Forensic Disk Decryptor allows decrypting data from encrypted containers or mounting encrypted vo ...

Modified
Forensic Disk Decryptor
Elcomsoft Co. Ltd
Commercial
Pricing Model

Elcomsoft Wireless Security Auditor examines the security of your wireless network by attempting to break into the network from outside or inside. Elcomsoft Wireless Security Auditor works completely in off-line, undetectable by the Wi-Fi network being pr ...

Modified
Wireless Security Auditor
oxygen forensics
Commercial
Pricing Model

Oxygen Forensic Extractor offers OEM system builders and hardware manufacturers a unique opportunity to integrate a time-proven forensic acquisition system to their hardware-based solution without spending years developing in-house software. Oxygen Forens ...

Modified
Oxygen Forensic Extractor
Oxygen Forensics
Commercial
Pricing Model

Oxygen Forensic Extractor for Clouds is a forensic program that allows to extract data from cloud services and save it on PC in a readable format. Authentication is required to get access to the cloud data. A forensic expert needs to enter account credent ...

Modified
Oxygen Forensic Extractor for Clouds
Michael Ahrendt
Freeware
Pricing Model

Triage-IR is a script written by Michael Ahrendt, which will collect system information, network information, registry hives, disk information and will also dump memory. One of the capabilities of Triage-IR is collecting information from Volume Shadow Cop ...

Modified
Triage-IR
Magnet Forensics
Freeware
Pricing Model

Encrypted Disk Detector is a command-line tool that can quickly, and non-intrusively, check for encrypted volumes on a computer system during incident response. The decision can then be made to investigate further and determine whether a live acquisition ...

Modified
Encrypted Disk Detector
Magnet Forensics
Freeware
Pricing Model

Dropbox Decryptor from Magnet Forensics is a free tool that will decrypt the Dropbox filecache.dbx and config.dbx files, which are both encrypted SQLite databases. These two locations store information about files that have been synched to the cloud using ...

Modified
Magnet Forensics
Freeware
Pricing Model

GMTI allows users to download the x,y,z coordinates found in the tile filenames as well as surrounding tiles to show more context around an individual title. It will also convert the x,y,z coordinates to their corresponding longitude, latitude coordinates ...

Modified
Google Maps Tile Investigator (GMTI)
Magnet Forensics
Commercial
Pricing Model

Internet Evidence Finder (IEF) is a digitcal forensics solution used by professionals to find, analyse and present digital evidence found on computers, smartphone and tablets. IEF searches intelligently parses and carves hundreds of different internet-re ...

Modified
Freeware
Pricing Model

FAW is the first browser conceived to acquire web pages for forensic purposes from any website. The program allows acquiring a whole, full resolution web page or just part of it, quick selecting the area. It is also able to collect videos or pages with si ...

Modified
Freeware
Pricing Model

Belkasoft Live RAM Capturer is a tiny free forensic tool to reliably extract the entire content of the computer's votatile memory - even if protected by an active anti-debugging or anti-dumping system. Separate 32-bit and 64-bit builds are avaiable in ord ...

Modified
Commercial
Pricing Model

Discover evidence in the field with Belkasoft Evidence Center Portable! The portable edition of Belkasoft forensic suite offers all the same features as Belkasoft Evidence Center 2014, but has a few key differences. Plug-and-play The Portable edition ...

Modified
Lipide Software
Freeware
Pricing Model

Kernel Exhcnage EDB Viewer is an Exchange Mailbox viewer tool, that assists system administrators in opening EDB files even in the absence of MS Exchange Servers. It will scan and open MS exchnge SErver EDB files, and after completing; the user mailboxes ...

Modified

© Computer Network Defence Limited 2021