Free
evtkit
A PowerShell-based incident response and live forensic data acquisition tool for Windows hosts.
Digital Forensics
Digital forensics for incident response. Uncover digital evidence to understand and resolve security breaches effectively.
Try these 212 AI Digital Forensics Tools
Free
exif
A tool for restoring defocused and blurred images with various deconvolution techniques and fast processing capabilities.
Free
Exiv2
A user-friendly and fast Forensic Analysis tool with features like tagging files and generating preview reports.
Free
Exterro
Toolkit for post-mortem analysis of Docker runtime environments using forensic HDD copies.
Free
extundelete
A library to access and parse Windows XML Event Log (EVTX) format, useful for digital forensics and incident response.
Free
eyeballer
A community-sourced repository of digital forensic artifacts in YAML format.
Free
Factual Rules Generator
DMG2IMG is a tool for converting Apple compressed dmg archives to standard image disk files with support for zlib, bzip2, and LZFSE compression.
Free
FEX Imagerâ„¢
Magnet ACQUIRE offers robust data extraction capabilities for digital forensics investigations, supporting a wide range of devices.
Free
Foremost
Comprehensive digital forensics and incident response platform for law enforcement, corporate, and academic institutions.
Free
ForensicMiner v1.4
A Python-based engine for automatic creation of timelines in digital forensic analysis
Free
Forensic Registry EDitor (FRED)
Web interface for the Volatility Memory Analysis framework with advanced features.
Free
Forensia
A library to access the Extensible Storage Engine (ESE) Database File (EDB) format used in various Windows applications.
Free
GitTools
A command line utility for managing volume shadow copies with capabilities for evasion, persistence, and file extraction.
Free
gvfs
An anti-forensic kill-switch tool for USB ports to shut down the computer immediately in case of unauthorized access.
Free
hashlookup-forensic-analyser
A Python 2.x tool for memory analysis on Mac OS X systems with support for various OS versions and memory image export capabilities.
Free
Hayabusa
A digital forensics tool that provides read-only access to file-system objects from various storage media types and file formats.
Free
Hindsight
A forensic tool to find hidden processes and TCP/UDP ports by rootkits or other hidden techniques.
Free
hivex
A digital forensic tool for creating forensic images of computer hard drives and analyzing digital evidence.