dfis alternatives

Looking for a better tool, or simply want to learn about alternatives? There is typically more than one option.

Alternatives (by tag)

60

Alternative: shellbags

Shellbags is a script written in Python to parse the Windows Registry file. It extract related information from directories browsed by Explorer.

Project details

shellbags is written in Python.

Strengths

  • + The source code of this software is available

Typical usage

  • digital forensics

shellbags project page

78

Alternative: Volatility

Volatile memory framework used for forensics and analysis purposes. The framework is written in Python and runs on almost all platforms.

Volatility is a well-known tool to analyze memory dumps. Interesting about this project is that the founders of this project decided to create a foundation around the project. This foundation is an independent 501(c) (3) non-profit organization that maintains and promotes open source memory forensics with The Volatility Framework.

Project details

Volatility is written in Python.

Strengths

  • + More than 1000 GitHub stars
  • + The source code of this software is available
  • + Project is supported by a foundation

Typical usage

  • digital forensics

Volatility project page