sleuthkit / scalpel
Scalpel is an open source data carving tool. It is not being actively maintained.
☆646Updated last year
Alternatives and similar repositories for scalpel:
Users that are interested in scalpel are comparing it to the libraries listed below
- The Sleuth Kit® (TSK) is a library and collection of command line digital forensics tools that allow you to investigate volume and file s…☆2,792Updated last week
- Libewf is a library to access the Expert Witness Compression Format (EWF)☆273Updated 8 months ago
- Super timeline all the things☆1,836Updated 2 months ago
- This is the development tree. Production downloads are at:☆1,204Updated last month
- SIFT☆504Updated last year
- Foremost is a console program to recover files based on their headers, footers, and internal data structures. This process is commonly re…☆328Updated last year
- Autopsy® is a digital forensics platform and graphical interface to The Sleuth Kit® and other digital forensics tools. It can be used by …☆2,652Updated 3 weeks ago
- Rekall Memory Forensic Framework☆1,948Updated 4 years ago
- DFF (Digital Forensics Framework) is a Forensics Framework coming with command line and graphical interfaces. DFF can be used to investig…☆283Updated 5 years ago
- Script for automating Linux memory capture and analysis☆269Updated 5 years ago
- Pulled Pork for Snort and Suricata rule management (from Google code)☆435Updated 3 years ago
- Official repository for Pyew.☆392Updated 5 years ago
- Binary analysis and management framework☆1,545Updated last year
- Autopsy Python Plugins☆352Updated last year
- Volatility profiles for Linux and Mac OS X☆323Updated 2 years ago
- Fuzzy hashing API and fuzzy hashing tool☆718Updated 4 years ago
- Digital Forensics Virtual File System (dfVFS)☆207Updated 4 months ago
- Python low-interaction honeyclient☆1,011Updated last week
- analyzeMFT.py is designed to fully parse the MFT file from an NTFS filesystem and present the results as accurately as possible in multip…☆474Updated 7 months ago
- Volatility plugins developed and maintained by the community☆362Updated 4 years ago
- Remote forensics meta tool☆465Updated last month
- LiME (formerly DMD) is a Loadable Kernel Module (LKM), which allows the acquisition of volatile memory from Linux and Linux-based devices…☆1,810Updated 6 months ago
- Web browser forensics for Google Chrome/Chromium☆1,176Updated last week
- Repo to store compiled modules or links to 3rd party add-on modules.☆492Updated 6 months ago
- Yara integrated software to handle archive file data.☆306Updated 3 years ago
- Modular file scanning/analysis framework☆619Updated 5 years ago
- Limon is a sandbox developed as a research project written in python, which automatically collects, analyzes, and reports on the run time…☆393Updated 8 years ago
- The kernel patch and userspace tools to enable Linux software write blocking☆141Updated 4 years ago
- CLI tool to manage a SIFT Install☆419Updated 2 years ago
- Simple Bash IOC Scanner☆730Updated 3 years ago