Data analysis suites
Name |
From |
Description |
|---|---|---|
| Autopsy | Brian Carrier | Graphical interface to the command line digital investigation analysis tools in The Sleuth Kit (see below) |
| Backtrack | Backtrack | Penetration testing and security audit with forensic boot capability |
| Caine | Nanni Bassetti | Linux based live CD, featuring a number of analysis tools |
| Deft | Dr. Stefano Fratepietro and others | Linux based live CD, featuring a number of analysis tools |
| Digital Forensics Framework | ArxSys | Analyses volumes, file systems, user and applications data, extracting metadata, deleted and hidden items |
| Forensic Scanner | Harlan Carvey | Automates ‘repetitive tasks of data collection’. Fuller description here |
| Paladin* | Sumuri | Ubuntu based live boot CD for imaging and analysis |
| SIFT* | SANS | VMware Appliance pre-configured with multiple tools allowing digital forensic examinations |
| The Sleuth Kit | Brian Carrier | Collection of UNIX-based command line file and volume system forensic analysis tools |
| Ubuntu guide | How-To Geek | Guide to using an Unbuntu live disk to recover partitions, carve files, etc. |
| Volatility Framework | Volatile Systems | Collection of tools for the extraction of artefacts from RAM |
