Forensics
| Name | Website | Source | Description | Programming language | Price | Online |
|---|---|---|---|---|---|---|
| binwalk | [Source] | Fast, easy to use tool for analyzing, reverse engineering, and extracting files | Python | Free | False | |
| dtrx | [Source] | Extracts archives in a number of different formats | Python | Free | False |
Audio
| Name | Website | Source | Description | Programming language | Price | Online |
|---|---|---|---|---|---|---|
| Audacity | [Website] | [Source] | Tool to edit and analyze audio tracks | Free | False | |
| Sonic Visualiser | [Website] | [Source] | Tool to edit and analyze audio tracks | Free | False | |
| DialABC DTMF | [Website] | Detect and decode DTMF Tones | Free | True |
File Recovery
| Name | Website | Source | Description | Programming language | Price | Online |
|---|---|---|---|---|---|---|
| extundelete | [Website] | [Source] | Tool to recover deleted files from an ext3 or ext4 partition | Free | False | |
| Foremost | [Website] | [Source] | CLI tool to recover files based on their headers, footers, and internal data structures | Free | False |
Images
| Name | Website | Source | Description | Programming language | Price | Online |
|---|---|---|---|---|---|---|
| exif | [Source] | Shows EXIF information for JPEG files only | C | Free | False | |
| Exiv2 | [Website] | [Source] | Library and CLI tool to read and write meta information (Exif, IPTC & XMP metadata and ICC Profile) in images (JPEG, TIFF, PNG, …) | Cplusplus | Free | False |
| ImageMagick | [Website] | [Source] | Software suite and library to create, edit, compose, or convert images | C | Free | False |
| Meta Picz | [Website] | Image metadata extractor | Free | True | ||
| PNGtools | [Website] | [Source] | Suite of tools to work with PNG images | C | Free | False |
| SmartDeblur | [Source] | To to restore defocused and blurred images (update binary only for Windows, Mac OS binary out of date) | Cplusplus | Free | False | |
| Steganabara | [Source] | Steganography analysis tool | Java | Free | False | |
| Steghide | [Website] | [Source] | Tool to hide messages in images | Free | False | |
| StegoVeritas | [Source] | Tool to unhide data in images | Python | Free | False | |
| StegSolve | GUI tool to analyse images | Java | Free | False | ||
| ZXing | Website | QR Decoder | Free | True |
Memory Forensic
| Name | Website | Source | Description | Programming language | Price | Online |
|---|---|---|---|---|---|---|
| rekall | [Website] | [Source] | Volatile memory extraction utility | Python | Free | False |
| volatility | [Website] | [Source] | Volatile memory extraction utility | Python | Free | False |
Ordinary Files
| Name | Website | Source | Description | Programming language | Price | Online |
|---|---|---|---|---|---|---|
| Cerbero Profiler | [Website] | File analyzer and inspector | Paid | False | ||
| ExifTool | [Website] | [Source] | Library and CLI tool for reading, writing and editing metadata for a lot of file types | Perl | Free | False |
| Extract Metadata | [Website] | General purpose metadata extractor | Free | True | ||
| John the Ripper | [Website] | Crack ZIP encryption (zip2john) | C | Free | False | |
| ResourcesExtract | [Website] | Scans dll/ocx/exe files and extract all resources found, Windows only | Free | False |
Other
| Name | Website | Source | Description | Programming language | Price | Online |
|---|---|---|---|---|---|---|
| diafaan SMS PDU | [Website] | SMS PDU Decoder | Free | True | ||
| Fibratus | [Source] | Tool for exploration and tracing of the Windows kernel | Python | Free | False | |
| FontForge | [Website] | Font Editor | Free | False | ||
| shellbags | [Source] | Shellbag parser (Windows Registry Keys) | Python | Free | False | |
| Registry Dumper | [Website] | Dump registry | Free | False |