Tag Archives: Forensics

Netactview – Graphical Network Activity Viewer

Netactview is a graphical network connections viewer for Linux, similar in functionality with Netstat. it includes features like process information

mXtract – Offensive Memory Extractor & Analyzer

mXtract is a tool that analyzes and dumps memory. It is developed and its purpose to scan memory for private keys, ips, and passwords using regexes

BlackArch Linux – Penetration Testing Distribution

BlackArch Linux is an Arch Linux-based penetration testing distribution for penetration testers and security researchers.

Kirjuri – Web application to Manage Forensic Evidence

Kirjuri is a digital forensic evidence item management system. It is a web application designed to help forensic teams manage, track and report devices delivered for forensic examination.

NTFS Log Tracker – Tool to Parse NTFS Logs

NTFS Log Tracker is a tool that can parse $LogFile, $UsnJrnl of NTFS.A input of this tool is sample file extracted by another tool like Encase, Winhex.

Skadi – DFIR Framework to Collect Process and Hunt

Skadi is a free, open source collection of tools that enables the collection, processing and advanced analysis of forensic artifacts and images. It works on MacOS, Windows, and Linux machines.

PlainSight – Open Source Digital Forensics

PlainSight is a versatile computer forensics environment that allows inexperienced forensic practitioners perform common tasks using powerful open source tools.