Category Archives: Computer Forensics

AppNetworkCounter – List Application Network Usage

AppNetworkCounter is a simple tool for Windows that counts and displays the number of TCP/UDP bytes and packets sent and received by every application on

TurnedOnTimesView – List PC Running Time Ranges

TurnedOnTimesView is a simple tool that analyses the event log of Windows operating system, and detects the time ranges that your computer was turned on.

EtherApe – Graphical Network Monitor

EtherApe is a graphical network monitor for Unix modeled after etherman. Featuring link layer, IP and TCP modes, it displays network activity graphically.

Cyber Triage – Practical Endpoint Response

Cyber Triage is an Incident response framework that will investigate remote systems and endpoint by pushing a collection of tools over the network.

Windows Forensic Toolchest (WFT) – Live Response Toolkit

The Windows Forensic Toolchest (WFT) is designed to provide a structured and repeatable automated Live Forensic Response, Incident Response, or Audit.

Live View – Boot dd images in VMware

Live View is a Java-based graphical forensics tool that creates a VMware virtual machine out of a raw (dd-style) disk image or physical disk.

Browser History Viewer – Tool to Analyze Browser History

Browser History Viewer is a forensic software tool for analyzing internet history from Chrome, Firefox, Internet Explorer and Edge web browsers.