afflib

Library that implements the AFF image standard

afl

afl-dyninst

aflplusplus

aide

AIDE (Advanced Intrusion Detection Environment) is a replacement for Tripwire

air

A GUI front-end to dd/dcfldd

autopsy

A graphical interface to the digital forensic analysis tools in The Sleuth Kit.

brakeman

bulk_extractor

chkboot

chkrootkit

a tool to locally check for signs of a rootkit

cmospwd

CmosPwd decrypts password stored in cmos used to access BIOS SETUP

cortex

dc3dd

dfvfs

dfxml

dmitry

dyninst

eagleeye

examiner

Examiner is an application that utilizes the objdump command to disassemble and comment foreign executable binaries

fatback

foremost

A console program to recover files based on their headers and footers

ftimes

fuxploider

galleta

IE Cookie Parser

gitleaks

grr

guymager

hindsight

honggfuzz

inception

indxparse

kjackal

lazagne

libbfio

libewf

Implementation of the EWF (SMART and EnCase) image format

libforensic1394

libpff

libvshadow

log2timeline

lynis

Security and system auditing tool

mac-robber

mac-robber is a digital forensics and incident response tool that collects data

magicrescue

Find deleted files in block devices

make-pdf

maltego

memdump

Simple memory dumper for UNIX-Like systems

mxtract

mysql-magic

oletools

onionscan

openscap

openscap-daemon

origami-pdf

ovaldi

pasco

IE Activity Parser

pcileech

pdf-parser

pdfid

pdfwalker

pev

plaso

prochunter

pyflag

pytsk

quickfuzz

radamsa

rdd

Rdd is a forensic copy program

reglookup

regripper

regviewer

rekall-core

rekall-gui

rifiuti

Recycle Bin Analyzer

rkhunter

Rootkit Hunter scans for known and unknown rootkits, backdoors, and sniffers.

rrip-plugins

s3tk

samhain

scalpel

scap-security-guide

scap-workbench

sleuthkit

A collection of file system and media management forensic analysis tools

snowman

spiderfoot

stegdetect

stegoveritas

stigqter

tcpxtract

thehive

tis-interpreter-bin

unhide

vine

vinetto

volatility

volatility3

xmount

yara

yaramod

yasat

yim2text

zsteg

zzuf

Transparent application input fuzzer

afflib

libbfio

regripper

afl

libewf

regviewer

afl-dyninst

libforensic1394

rekall-core

aflplusplus

libpff

rekall-gui

aide

libvshadow

rifiuti

air

log2timeline

rkhunter

autopsy

lynis

rrip-plugins

brakeman

mac-robber

s3tk

bulk_extractor

magicrescue

samhain

chkboot

make-pdf

scalpel

chkrootkit

maltego

scap-security-guide

cmospwd

memdump

scap-workbench

cortex

mxtract

sleuthkit

dc3dd

mysql-magic

snowman

dfvfs

oletools

spiderfoot

dfxml

onionscan

stegdetect

dmitry

openscap

stegoveritas

dyninst

openscap-daemon

stigqter

eagleeye

origami-pdf

tcpxtract

examiner

ovaldi

thehive

fatback

pasco

tis-interpreter-bin

foremost

pcileech

unhide

ftimes

pdf-parser

vine

fuxploider

pdfid

vinetto

galleta

pdfwalker

volatility

gitleaks

pev

volatility3

grr

plaso

xmount

guymager

prochunter

yara

hindsight

pyflag

yaramod

honggfuzz

pytsk

yasat

inception

quickfuzz

yim2text

indxparse

radamsa

zsteg

kjackal

rdd

zzuf

lazagne

reglookup