9 projects tagged "Forensics"

Download No website Updated 19 May 2014 Lynis

Screenshot
Pop 1,382.14
Vit 122.16

Lynis is an auditing and hardening tool for Unix derivatives like Linux/BSD/Solaris. It scans systems to detect software and security issues. Besides security-related information, it will also scan for general system information, installed packages, and possible configuration mistakes. The software is aimed at assisting automated auditing, software patch management, and vulnerability and malware scanning of Unix-based systems.

No download Website Updated 07 Apr 2008 Yet Another Flowmeter

Screenshot
Pop 31.75
Vit 1.00

Yet Another Flowmeter (YAF) is a tool for network flow capture, primarily designed to operate efficiently on white box hardware and generate IPFIX flow records. It is designed to operate primarily on Unix-based systems (including Mac OS X), and is supported by the Network Situational Awareness team at CERT.

Download Website Updated 19 Jan 2009 AirSAM

Screenshot
Pop 42.11
Vit 1.74

AirSAM is a desktop GUI that compliments the Web based Snort Alert Monitor. AirSAM gives up to date insight into who might be attacking your network. The ultimate goal is to give audio/visual cues right at the time of the attack. AirSAM is an Adobe Air application and should run on Mac OS, Linux, and Windows.

No download Website Updated 16 Aug 2009 LibForensics

Screenshot
Pop 19.67
Vit 41.79

LibForensics is a framework for developing digital forensics applications in Python.

Download No website Updated 01 Mar 2013 Digital Forensics Framework

Screenshot
Pop 143.87
Vit 4.76

DFF (Digital Forensics Framework) is a simple but powerful tool with a flexible module system which will help you in your digital forensics works, including file recovery due to error or crash, evidence research and analysis, etc. DFF provides a robust architecture and some handy modules.

No download No website Updated 26 May 2010 libpff

Screenshot
Pop 36.66
Vit 1.52

libpff is a library and tools to access the Personal Folder File (PFF) and the Offline Folder File (OFF) format. PFF is used by Outlook in PAB (Personal Address Book), PST (Personal Storage Table), and OST (Offline Storage Table) files.

Download No website Updated 24 Dec 2011 NetXtract

Screenshot
Pop 48.68
Vit 1.02

Xtract attempts to demonstrate how Wireshark's powerful network traffic analysis capabilities can be combined with the file carving capabilities of programs such as Foremost and NetworkMiner in a manner that is portable and extensible (hence the choice of Perl). Specifically, it offers automated extraction of network stream sessions; visualization of networks via GraphViz; and integration of file carving capability. The scripts are intended as a proof-of-concept for how tedious tasks of reassembling TCP/UDP streams from network capture files and file carving based on these streams can be automated.

Download No website Updated 13 Nov 2011 XtractCarver

Screenshot
Pop 24.19
Vit 30.43

Xtract attempts to demonstrate how Wireshark's powerful network traffic analysis capabilities can be combined with the file carving capabilities of programs such as Foremost and NetworkMiner in a manner that is portable and extensible (hence the choice of Perl). Specifically, it offers: automated extraction of network stream sessions; visualization of networks via GraphViz; and integration of file carving capability. The scripts are intended as a proof-of-concept for how tedious tasks of reassembling TCP/UDP streams from network capture files and file carving based on these streams can be automated.

Download Website Updated 24 Feb 2013 ANNFiD

Screenshot
Pop 41.33
Vit 1.04

ANNFiD is an experimental forensic tool that identifies file types using neural networks. A GUI tool is used to train the network for new file types. It is intended to be used to determine the nature of corrupted files.

Screenshot

Project Spotlight

OpenDNSSEC

A program that secures zone data before it is published in an authoritative name server.

Screenshot

Project Spotlight

HoudahGeo

A one-stop photo geocoding application.