Search Results for "forensics" - Page 4

Development and support of OCFA have been discontinued. the code has moved to these github repositories: https://github.com/DNPA/OcfaLib https://github.com/DNPA/OcfaArch https://github.com/DNPA/OcfaJavaLib https://github.com/DNPA/OcfaModules https://github.com/DNPA/OcfaDoc If you are interested in contributing to ongoing work on the creation of a community maintained OCFA inspired computer forensic framework, please join the Mattock/MattockFS community page on...

File System Carver (fsc) is a tool used to separate partitions on disk or disk image. First the fsc tool will hash the entire disk. Second it will look for partitions on the disk to separate. Then fsc will carve out each partition on the disk to its own file and each gap between partitions. Each new file will be hashed on its own. Finally the fsc will make sure when the files are put back together in order that their hash matches the original overall hash.

Welcome to OSAF! The OSAF-Toolkit was developed, as a senior design project, by a group of IT students from the University of Cincinnati, wanting to pioneer and pave the way for standardization of Android malware analysis. The OSAF-Toolkit is built from Ubuntu 11.10 and pre-compiled with all of the tools needed to rip apart applications for code review and malware analysis. Our primary goal with the toolkit is to be able to make application analysis as easy as possible. We also wanted to...

KareFa Linux adalah merupakan distribusi GNU/Linux berbasis Ubuntu 10.4.4 LTS, yang disesuaikan dengan kebutuhan penggunaan komputer untuk masyarakat indonesia dengan tambahan applikasi Digital Forensics dari Backtrack dan DEFTLinux. KareFa Linux di release pertama ini menggunakan Kernel bawaan dari ubuntu 10.4.4 LTS yaitu kernel 2.6.32-26-generic dengan file image berukuran 3.6 GB.

AllCheckSumer is a handy tool for computer forensics and is helpful for investigators to search throughout a computer’s file system for a bad hash specified by the investigator. The tool will search throughout a location, specified by the investigator. It can be either an entire file system or a specific folder, and create a hash set with the following file signature algorithms: • MD5 (Message-Digest Algorithm v. 5) • SHA-1 (Secure Hash Algorithm v. 1) • CRC (Cyclic Redundancy Check)

Rapid Evidence Acquisition Project for Event Reconstruction (REAPER) - Open Source forensic environment for the complete automation of the digital investigation process. At its core is Debian Live and the Open Computer Forensics Architecture (OCFA).

The Forensics Data Identifier (FDI) is a tool which allows for large data files to be easily filtered for common forensically relevant data types.The tool was intended to speed up the ediscovery and analysis processes of the forensics investigation

Selective pcap file replay application for security reexecution and forensics.

This is a collector site of tools and scripts for the digital forensics. http://scripts4cf.sf.net

XML carver which can carve damaged or non-standard XML out of any file. It rebuilds the XML tree, along with giving the offsets for all the carved XML data. This tool was developed for the DFRWS 2010 Forensics Challenge.

...Byte Investigator The Byte Investigator project from Octane Labs was born in order to be a parsing toolkit for several Windows structures (files and file system structures). These Perl script tools are useful tools for Computer Forensics professionals and Information Security researchers.

This is a computer forensics useful tool written in bash script for Linux systems. It's fast and selective, you can retrieve all the files of the file type you choose with only one tool referenced, deleted and unallocated in very fast way.

DWIP is short for Disk Wiping and Imaging Tool. This tool is being built for Mississippi State Universities National Forensics Training Center for use on a live cd to give out to it's students.

PPF : PenTestIT Portable Forensic Live DVD Collaboration of forensic tools in single DVD Vist : pentestit.com for more info

mac-robber is a digital forensics and incident response tool that can be used with The Sleuth Kit to create a timeline of file activity for mounted file systems.

Utility for facebook memory forensics.

the Revealer Toolkit is a framework and simple scripts for computer forensics. It uses Brian Carrier's The Sleuth Kit as the backbone, as well as other free tools. Additional information: http://code.google.com/p/revealertoolkit

Interrogate is a proof-of-concept tool for identification of cryptographic keys in binary material. First and foremost for memory dump analysis and forensics usage. Able to identify AES, Serpent, Twofish and RSA keys as of version 0.0.3.

Trisul is a high performance network metering and forensics engine. It monitors links and stores sessions, traffic stats, and raw packets. It also includes a Ruby-on-rails module for web access.

Hard disk forensics in the lisp way.

Software repository of the hack://src project. Includes security related software for crypto, vulnerability/patch notification & management, and ultra low level system access for stealth forensics & intrusion detection or malware removal.

Vinetto is a tool intended for forensics examinations. It is a console program to extract thumbnail images and their metadata from those thumbs.db files generated under Microsoft Windows. Vinetto works under Linux, Cygwin(win32) and Mac OS X.

META is a decision making software which aims are to track computer attackers, computer attacks and to help investigators finding useful elements.

An Enhanced version of gnu dd with features useful for forensics and security. Key features include on-the-fly hashing, status output and faster disk wiping.

The file recovery process is not an easy task to run on Linux and Unix based OSes and there`s almost no good user interfaces for end users, so that`s why, El Recuperador, is intended to make a generic Web-based GUI framework based on forensics informatic