Raw Parsers / Decoders
Basic tools for byte-level analysis of data blobs
Website: https://digitalcorpora.org/downloads/bulk_extractor & https://github.com/simsong/bulk_extractor
Description: Tool for extracting artifacts from random data
Author: Simson L. Garfinkel
License: MIT License (https://github.com/simsong/bulk_extractor/blob/main/LICENSE.md)
Version: 1.5.5
Notes:
Website: https://github.com/gchq/cyberchef
Description: Web app for encryption, encoding, compression and data analysis
Author: GCHQ
License: Apache License v2.0 (https://github.com/gchq/CyberChef/blob/master/LICENSE)
Version: 9.55.0
Notes:
Website: https://www.digital-detective.net/datadump/
Description: Tool to extract segments of data from an image or device
Author: Craig Wilson (https://www.digital-detective.net)
License:
Version: 2.1.23012.16
Notes: x86
Website: https://www.digital-detective.net/dcode
Description: Timestamp encoder/decoder
Author: Craig Wilson (https://www.digital-detective.net)
License:
Version: 5.5.21194.40
Notes:
Website: https://www.hhdsoftware.com
Description: Hex Editor
Author: HHD Software
License: EULA (https://www.hhdsoftware.com/company/terms-of-use)
Version: 7.09.01.8132
Notes:
Website: https://mh-nexus.de
Description: Hex Editor
Author: Mael Horz
License: https://mh-nexus.de/en/about.php
Version: 2.5.0.0
Notes:
Website: https://github.com/digitalsleuth/forensics_tools
Description: IP / Hex / Dec Conversion tool
Author: Corey Forman
License: GNU General Public License v3.0 (https://github.com/digitalsleuth/forensics_tools/blob/master/LICENSE)
Version: 1.1
Notes:
Website: https://github.com/ufrisk/MemProcFS
Description: Memory Process File System
Author: Ulf Frisk
License: GNU Affero GPL v3.0 - https://github.com/ufrisk/MemProcFS/blob/master/LICENSE
Version: 5.3.1
Notes:
Website: https://www.passware.com
Description: Encryption detection tool for various file types
Author: Passware - Dmitry Sumin
License: EULA (https://support.passware.com/hc/en-us/articles/221742768-What-are-the-terms-of-the-end-user-license-agreement-for-Passware-software-)
Version: 2023.1.1.3432
Notes:
Website: https://www.cgsecurity.org/
Description: Raw data parsing tool
Author: Christophe Grenier
License: GNU General Public License v2.0 (https://git.cgsecurity.org/cgit/testdisk/tree/COPYING)
Version: 7.1
Notes:
Website: https://www.fireeye.com
Description: Memory and File analysis tool
Author: FireEye
License: Software Royalty-Free License (https://www.trellix.com/en-us/downloads/free-tools/terms-of-use.html)
Version: 2.0
Notes:
Website: https://github.com/digitalsleuth/time_decode
Description: Python timestamp encode / decode utility
Author: Corey Forman
License: MIT License (https://github.com/digitalsleuth/time_decode/blob/master/LICENSE)
Version: 4.2
Notes:
Website: https://github.com/VirusTotal/yara-python
Description: Analyze files by generating rules around data to be found
Author: Victor M. Alvarez (plusvic)
License: Apache License v2.0 (https://github.com/VirusTotal/yara-python/blob/master/LICENSE)
Version: 4.2.3
Notes:
Last modified 3mo ago