Forensic Tools

Viewer for standalone files containing Microsoft Outlook Express 4,5 and 6 message database (*.idx/*.mbx/*.dbx), Windows Vista Mail/Windows Live Mail and Mozilla Thunderbird message databases as well as standalone EML files. This application is based on ...

Nuix Evidence Mover is designed to copy evidence files images from one storage location, to antoher. It creates a hash of the files before and after moving to ensure the data has been copied accurately, and to maintain the chain of custody.

Agent Ransack is a free software program for finding files on your PC or network drives by using Booleon operators and Perl regex. Found text is shown with highlighted keywords so you don't need to waste time opening each file looking for the right infor ...

Whether its a line of source code, an entry into a log file, a legal brief, or even a letter, FileLocator Pro helps you find things fast. It's features make it possible to dig out information in even the most obscure file formats. Review highlighed keywo ...

HexBrowser is a tool that identifies file types. It ignores file extensions, and focuses on the signatures that the file contains, so it is able to determine the exact type of file. It now recognises more than 1000 different file formats. HexBrowser show ...

HashMyFiles is a small utility that allows you to calculate the MD5 and SHA1 hashs of one or more files on your system. You can easily copy the MD5/SHA1 hashes list into the clopboard, or save them into text/html/xml file. You are also able to launch Has ...

Software to gather the Volume Serial Number from an attached device including CDs. V5 now includes a built in registry viewer (NTUSER, SAM, SYSTEM, SOFTWARE) and disk explorer with multiple viewing formats.

Browser History Capturer is a free tool that allows you to easily capture web brwoser history from a Windows computer. The tool can be run from a USB dongle to capture history from Firefox, Chrome and Internet Explorer web browsers. The history files are ...

Browser History viewer is a free tool for extracting, viewing and analysing internet history from Firefox, Chrome and Internet Explorer web browsers. Website visits are displayed alongside an interactive graph, showing how many sites have been visited ov ...

FoxAnalysis Plus is a software tool for extracting, viewing and analysing internet history from the Mozilla Firefox web browser. Website visits can be viewed in a navigable timeline structure for easily viewing the times in which websites have been visit ...

USBDeviceForensics is an application to extract numerous bits of information regarding USB devices. it uses the infomration from a SANS blog posting to retrieve operating system specific information. It now has the ability to process multiple NTUSER.dat r ...

Process monitor is a monitoring tool for Windows that shows real-time file system, Registry and process/thread activity. it combines the features of two legacy Sysinternals utilites, Filemon, Regmon, and adds an extensive list of enhancements including ri ...

The supported file formats are .xls, .xlsx, .csv. There are no file size limits. Oxygen Forensic Call Data Expert conveniently guides through the process of call data records file importing and fields mapping that is required to convert the file into uni ...