Tags: registry

Triage-IR

Triage-IR is a script written by Michael Ahrendt, which will collect system information, network information, registry hives, disk information and will also dump memory. One of the capabilities of Triage-IR is collecting information from Volume Shadow Cop ...

Category Forensic Tools
VendorMichael Ahrendt
Pricing ModelFreeware
Modified

Software to gather the Volume Serial Number from an attached device including CDs. V5 now includes a built in registry viewer (NTUSER, SAM, SYSTEM, SOFTWARE) and disk explorer with multiple viewing formats.

Category Forensic Tools
VendorAsh368
Pricing ModelFreeware
Modified

USBDeviceForensics is an application to extract numerous bits of information regarding USB devices. it uses the infomration from a SANS blog posting to retrieve operating system specific information. It now has the ability to process multiple NTUSER.dat r ...

Category Forensic Tools
VendorWoanware
Pricing ModelFreeware
Modified

© Computer Network Defence Limited 2020