MVT (Mobile Verification Toolkit) helps with conducting forensics of mobile devices in order to find signs of a potential compromise.

Digital Forensics Guide. Learn all about Digital Forensics, Computer Forensics, Mobile device Forensics, Network Forensics, and Database Forensics.

A standalone SIGMA-based detection tool for EVTX, Auditd and Sysmon for Linux logs

Graph Visualization for windows event logs

Digital forensic analysis tool that provides a user-friendly interface for investigating disk images.

Fast and robust date extraction from web pages, with Python or on the command-line

All-sources tool to search websites by favicons

Cross-platform registry browser for raw Windows registry files

FIT is a Python3 application for forensic acquisition of contents like web pages, emails, social media, etc. directly from the internet.

ExeSpy is a cross-platform PE viewer for EXE and DLL files

🧠🛡️ Web service for detecting network attacks in PCAP using ML.

Save your corrupted images easily.Easy to use forensic tool.

Automate ssh private key extraction from ssh-agent

A forensic tool to automatically extract as many artifacts as possible from the WhatsApp desktop/web client

Cryptocurrency Triage Tool - Identify multiple cryptocurrency addresses and transactions from various wallet applications!

A forensic analysis framework for enumerating slack artifacts residing in the Operating system.

MFT and USN parser that allows direct extraction in filesystem timeline format (mactime), dump all resident files in the MFT in their original folder structure and run yara rules over them all.

/ˈhäjˌpäj/ "a confused mixture."

YellowDotDecode is a graphical application that decodes the hidden information embedded in the yellow dots printed by some printers. These yellow dots, often invisible to the naked eye, contain metadata such as the date, time, and serial number of the printer, which can be used to trace the source of a printed document.

Analysis-oriented command line tool for remote execution and triage via EDRs API