Sort by new | name

Armory

Network Miner

NetworkMiner is a Network Forensic Analysis Tool (NFAT) for Windows. NetworkMiner can be used as a passive network sniffer/packet capturing tool in order to detect operating systems, sessions, hostnames, open ports etc. without putting any traffic on the network. NetworkMiner can also parse PCAP files for off-line analysis and to ...

Forensics


PhotoRec

PhotoRec is file data recovery software designed to recover lost files including video, documents and archives from Hard Disks and CD-ROM and lost pictures (thus, its 'Photo Recovery' name) from digital camera memory. PhotoRec ignores the filesystem and goes after the underlying data, so it will still work even if ...

Forensics


Helix

Helix is a customized distribution of the Knoppix Live Linux CD. Helix is more than just a bootable live CD. You can still boot into a customized Linux environment that includes customized linux kernels, excellent hardware detection and many applications dedicated to Incident Response and Forensics. Helix has been modified ...

Forensics


chntpw

chntpw is an offline NT password and registry editor. It can be used to blank or reset passwords on Windows NT/2000/XP/2003 machines, as well as manipulate the registry. It is provided primarily as a boot CD image, but can also be installed on a permanent Linux system.

Forensics Password Cracking


KNOPPIX

KNOPPIX is a bootable Live system on CD or DVD, consisting of a representative collection of GNU/Linux software, automatic hardware detection, and support for many graphics cards, sound cards, SCSI and USB devices and other peripherals. KNOPPIX can be used as a productive Linux system for the desktop, educational CD, ...

Forensics Network Utilities System Monitoring