INDXRipper
ntfsdump
Our great sponsors
INDXRipper | ntfsdump | |
---|---|---|
3 | 1 | |
55 | 16 | |
- | - | |
6.7 | 7.1 | |
3 months ago | 2 months ago | |
Python | Python | |
MIT License | GNU General Public License v3.0 only |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
INDXRipper
ntfsdump
-
Extraction of Artifacts from an NTFS Image File Using ntfsdump and ntfsfind
# Download source code from GitHub $ git pull https://github.com/sumeshi/ntfsdump $ cd ntfsdump # Install dependencies $ pip install poetry $ poetry install # Run command using poetry $ poetry run ntfsdump -h
What are some alternatives?
dfirtrack - DFIRTrack - The Incident Response Tracking Application
ntfsfind - An efficient tool for search files, directories, and alternate data streams directly from NTFS image files.
RecuperaBit - A tool for forensic file system reconstruction.
FATtools - Facilities to access (ex)FAT filesystems and disk images with Python 3
RELY - RELY (Name composed on project members Romy, Esther, Lucille and Yassir) is a python tool developed to help a Digital Forensics Triage procedure on some Microsoft Windows devices.
prowler - Prowler is an Open Source Security tool for AWS, Azure, GCP and Kubernetes to do security assessments, audits, incident response, compliance, continuous monitoring, hardening and forensics readiness. Includes CIS, NIST 800, NIST CSF, CISA, FedRAMP, PCI-DSS, GDPR, HIPAA, FFIEC, SOC2, GXP, Well-Architected Security, ENS and more
sleuthkit - The Sleuth Kit® (TSK) is a library and collection of command line digital forensics tools that allow you to investigate volume and file system data. The library can be incorporated into larger digital forensics tools and the command line tools can be directly used to find evidence.
oletools - oletools - python tools to analyze MS OLE2 files (Structured Storage, Compound File Binary Format) and MS Office documents, for malware analysis, forensics and debugging.
beagle - Beagle is an incident response and digital forensics tool which transforms security logs and data into graphs.
TheHiveDocs - Documentation of TheHive