Alternatives and similar repositories for scalpel:

Users that are interested in scalpel are comparing it to the libraries listed below

• vitaly-kamluk / bitscout
  Remote forensics meta tool
  ☆466Updated last month
• libyal / libewf
  Libewf is a library to access the Expert Witness Compression Format (EWF)
  ☆273Updated 7 months ago
• sleuthkit / sleuthkit
  The Sleuth Kit® (TSK) is a library and collection of command line digital forensics tools that allow you to investigate volume and file s…
  ☆2,781Updated this week
• 504ensicsLabs / LiME
  LiME (formerly DMD) is a Loadable Kernel Module (LKM), which allows the acquisition of volatile memory from Linux and Linux-based devices…
  ☆1,805Updated 6 months ago
• simsong / bulk_extractor
  This is the development tree. Production downloads are at:
  ☆1,196Updated 3 weeks ago
• halpomeranz / lmg
  Script for automating Linux memory capture and analysis
  ☆269Updated 5 years ago
• volatilityfoundation / community
  Volatility plugins developed and maintained by the community
  ☆359Updated 4 years ago
• google / rekall
  Rekall Memory Forensic Framework
  ☆1,947Updated 4 years ago
• Invoke-IR / ForensicPosters
  ☆445Updated 5 months ago
• teamdfir / sift
  SIFT
  ☆503Updated last year
• msuhanov / Linux-write-blocker
  The kernel patch and userspace tools to enable Linux software write blocking
  ☆139Updated 4 years ago
• hatching / vmcloak
  Automated Virtual Machine Generation and Cloaking for Cuckoo Sandbox.
  ☆497Updated 11 months ago
• GoSecure / malboxes
  Builds malware analysis Windows VMs so that you don't have to.
  ☆1,040Updated 3 years ago
• BayshoreNetworks / yextend
  Yara integrated software to handle archive file data.
  ☆306Updated 2 years ago
• viper-framework / viper
  Binary analysis and management framework
  ☆1,544Updated last year
• rowingdude / analyzeMFT
  analyzeMFT.py is designed to fully parse the MFT file from an NTFS filesystem and present the results as accurately as possible in multip…
  ☆472Updated 6 months ago
• mitre / multiscanner
  Modular file scanning/analysis framework
  ☆619Updated 5 years ago
• buffer / thug
  Python low-interaction honeyclient
  ☆1,010Updated this week
• markmckinnon / Autopsy-Plugins
  Autopsy Python Plugins
  ☆348Updated last year
• arxsys / dff
  DFF (Digital Forensics Framework) is a Forensics Framework coming with command line and graphical interfaces. DFF can be used to investig…
  ☆283Updated 5 years ago
• log2timeline / dfvfs
  Digital Forensics Virtual File System (dfVFS)
  ☆207Updated 3 months ago
• omriher / CapTipper
  Malicious HTTP traffic explorer
  ☆716Updated 2 years ago
• MITRECND / chopshop
  Protocol Analysis/Decoder Framework
  ☆491Updated 2 years ago
• elceef / bitlocker
  Volatility Framework plugin for extracting BitLocker FVEK (Full Volume Encryption Key)
  ☆228Updated 8 years ago
• ForensicArtifacts / artifacts
  Digital Forensics artifact repository
  ☆1,101Updated 3 months ago
• microsoft / avml
  AVML - Acquire Volatile Memory for Linux
  ☆936Updated this week
• teamdfir / sift-cli
  CLI tool to manage a SIFT Install
  ☆419Updated 2 years ago
• maliceio / malice
  VirusTotal Wanna Be - Now with 100% more Hipster
  ☆1,680Updated 2 years ago
• tomchop / malcom
  Malcom - Malware Communications Analyzer
  ☆1,158Updated 7 years ago
• kevthehermit / VolUtility
  Web App for Volatility framework
  ☆380Updated 4 months ago