Directory: Recently Added Listings 
www.woanware.co.uk/forensics/regripperrunner.html
RegRipperRunner is to replace the functionality of my RegExtract tool e.g. run plugin, run hive, run folder but using Harlan Carvey?s regripper, which means it has the same functionality and plugins as regripper without me having to maintain all of the pl ...
github.com/keydet89/RegRipper2.8
What is RegRipper? RegRipper was created and maintained by Harlan Carvey. RegRipper, written in Perl, is the fastest, easiest, and best tool for registry analysis in forensics examinations. RegRipper has been downloaded over 5000 times and used by examine ...
github.com/travisfoley/dfirtriage
"DFIRTriage is a python script intended to provide Incident Responders with rapid host data. The python code has been compiled to eliminate the dependency of python on the target host. The tool will run a variety of commands automatically upon execution. ...
github.com/codejanus/ToolSuite
ADExplorer ADInsight.chmADInsight ADSSpy AFind AccessEnum AdExplorer.chmAudited Autologon Bginfo Cacheset Clockres Contig Coreinfo DACLchk DCode DISKMON.HLPDMON.SYSDarkNamer Dbgview Desktops Disk2vhd.chmDiskView DiskWipe Diskmon DumpIt Eula.txtFileStat Fi ...
Timestomp allows changing, deleting, or modifying NTFS Modified, Accessed, Created, and Entry Modified file time stamps.
github.com/rapid7/metasploit-framework/wiki/Nightly-Installe...
Metaploit framework installers are built nightly for those wanting to track the bleeding edge, or those who would like a simplified Metasploit framework setup experience. These packages are built for OS X (64-bit), Windows (32-bit) and various Linux distr ...
The Windows Forensic Environment (aka: Windows FE, WinFE) is a Windows-based, forensically sound, bootable operating system. WinFE allows you to boot a computer system via external media, such as a USB, DVD, or CD, to a forensically sound Windows operati ...
"DigitalCorpora.org is a website of digital corpora for use in computer forensics education research. All of the disk images, memory dumps, and network packet captures available on this website are freely available and may be used without prior authorizat ...
"This dataset was collected and prepared by the CALO Project (A Cognitive Assistant that Learns and Organizes). It contains data from about 150 users, mostly senior management of Enron, organized into folders. The corpus contains a total of about 0.5M mes ...
For any kind of bruteforce find wordlists or unleash the power of them all at once!
github.com/berzerk0/Probable-Wordlists
Wordlists sorted by probability originally created for password generation and testing - make sure your passwords aren't popular!
github.com/danielmiessler/SecLists/tree/master/Passwords
The Passwords directory will hold a number of password lists that can be used by multiple tools when attempting to guess credentials for a given targeted service. This will include a number of very popular lists in cooperation with their maintainers, incl ...
wiki.skullsecurity.org/Passwords
Password dictionaries, leaked passwords, non-hacking dictionaries, Facebook lists
Hashes.org attempts to reveal the plain text of your submitted hash. This is done in an effort to assist security professionals to evaluate the security provided by the relevant hash submitted.
www.dmares.com/maresware/html/recycled_i.htm
recycled_i will decode the content of $I files in the windows $recycle.bin to show info regarding original file that is deleted.
www.adfsolutions.com/triage-g2
Triage-G2 is the latest evolution of ADF's award-winning media exploitation tool which is deployed by special forces, military and intelligence agencies worldwide. The tool has a proven track record supporting site exploitation operations (including DOMEX ...
www.adfsolutions.com/triage-investigator
Triage-Investigator is the latest evolution of ADF's award-winning triage tool designed for field deployment. The tool has a proven track record of providing easy and quick access to court defendable evidence to process cases and leveraging investigators ...
ADF Digital Evidence Investigator® (DEI) is the industry leading digital investigation tool that leverages ADF’s proven track record of reducing forensic backlogs. Now you can conduct intelligent digital investigations easier, faster and smarter.
dmeforensics.com/dvr-examiner/
DVR Examiner is a software solution for the recovery of video and metadata from DVR surveillance systems in a forensically sound manner. This “game changing” software can help save your team time and money when recovering video evidence by ...
www.endgame.com/blog/technical-blog/introducing-ember-open-s...
Over the last decade, machine learning has achieved truly impressive results in fields such as optical character recognition, image labeling, and speech recognition. Advancements in hardware and rapidly growing datasets have been instrumental in this prog ...
Most Reviewed
Bitwar Data Recovery... Website: www.bitwar.netWebsite Clicks: 81
Bitwar iPhone Data... Website: www.bitwar.netWebsite Clicks: 24
Bitwar Android Data... Website: www.bitwar.netWebsite Clicks: 30
BitRaser for File Website: www.stellarinfo.com/windows-tools/file-eraser.phpWebsite Clicks: 267- Show more...
Stats
Featured
Vound Intellahttps:/... Website: www.vound-software.com/individual-solutions
Website Clicks: 594- Sumuri Reconhttps://sumuri.com... Website: sumuri.com/software/recon/Website Clicks: 725
- Eric Zimmerman Registry...https:/... Website: ericzimmerman.github.ioWebsite Clicks: 801
- Paraben Forensics E3 P2Chttps://www.paraben.com... Website: www.paraben.com/products/e3-p2c
Website Clicks: 306 - Magnet AXIOM Cloudhttps:/... Website: www.magnetforensics.com/axiom-cloud/Website Clicks: 374
- CALO Project Enron...https://www.cs.cmu.edu... Website: www.cs.cmu.edu/~enron/Website Clicks: 793
- DigitalCorporadigitalcorpora.org... Website: digitalcorpora.orgWebsite Clicks: 1,324
Omnibushttps://github.com... Website: github.com/InQuest/omnibusWebsite Clicks: 104- Show more...
Popular
- SOF-ELK (Security... Website: github.com/philhagen/sof-elk/blob/master/VM_README.mdWebsite Clicks: 5,827
WinFE - Windows... Website: winfe.wordpress.comWebsite Clicks: 5,138- sets.py Website: blog.didierstevens.com/2017/03/05/new-tool-sets-py/Website Clicks: 602
- Metasploit Website: www.metasploit.comWebsite Clicks: 999
- Cellebrite UFED Reader Website: www.cellebrite.com/Mobile-Forensics/Applications/ufed-readerWebsite Clicks: 1,339
- http://lionsec-linux.org... Website: lionsec-linux.orgWebsite Clicks: 1,164
- RDP Bitmap Cache parser Website: github.com/ANSSI-FR/bmc-toolsWebsite Clicks: 1,095
- Memory Samples -... Website: github.com/volatilityfoundation/volatility/wiki/Memory-Sampl...Website Clicks: 1,112
- Show more...
Most Rated
- WinFE - Windows... Website: winfe.wordpress.comWebsite Clicks: 5,138
- SOF-ELK (Security... Website: github.com/philhagen/sof-elk/blob/master/VM_README.mdWebsite Clicks: 5,827
- X-Ways Forensics Website: www.x-ways.netWebsite Clicks: 825
- CAINE- Computer Aided... Website: www.caine-live.netWebsite Clicks: 928
- Bitwar Data Recovery... Website: www.bitwar.netWebsite Clicks: 81
- USB Detective Website: usbdetective.comWebsite Clicks: 255
- Harlan Carvey RegRipper Website: github.com/keydet89/RegRipper2.8Website Clicks: 1,414
- Autopsy Website: www.sleuthkit.org/autopsy/Website Clicks: 945
- Show more...
Recently updated
- Blazescan Website: github.com/Hestat/blazescanWebsite Clicks: 28
- Amped Authenticate Website: ampedsoftware.com/authenticateWebsite Clicks: 72
- grayfold3d/POSH-Triage Website: github.com/grayfold3d/POSH-TriageWebsite Clicks: 63
- Bitwar Data Recovery... Website: www.bitwar.netWebsite Clicks: 81
- BitRecover Virtual... Website: www.bitrecover.com/virtual-drive-recovery-software/Website Clicks: 653
- CellHawk - Call Detail... Website: www.hawkanalytics.comWebsite Clicks: 101
- TraceWrangler - Packet... Website: www.tracewrangler.comWebsite Clicks: 72
- R-CSIRT Linux Triage... Website: github.com/Recruit-CSIRT/LinuxTriageWebsite Clicks: 102
- Show more...
© 2018 Copyright | DFIR Training