MFTDump – Tool to Parse MFT Files

MFTDump is a tool provides a quick and easy way to extract forensic metadata from an NTFS volume $MFT file.

OSINT-SPY – Tool to Search using OSINT

OSINT-SPY is a tool that will help in performing OSINT scan on several online resources and check information for email , domain , ip_address and organization

CapAnalysis – Network Forensic Tool

CapAnalysis is a web visual tool for information security specialists, system administrators and everyone who needs to analyze large amounts of captured network traffic.

Koadic – C3 COM Command & Control – JScript RAT

Koadic, or COM Command & Control, is a Windows post-exploitation rootkit similar to other penetration testing tools such as Meterpreter and Powershell Empire.

Eraser – Tool to Wipe Sensitive Data

During the incident response and analyzing artifact in memory the responder will copy the data to external hard drive and this may include sensitive information that will be processed during the work. before starting to use external hard drive it

Xplico – Network Forensic Analysis Tool

Network artifact collection is extremely important when you are looking to investigate a security intrusion reported by external entity such as ISP, CERT or CSIRT. Network evidence may include network logs, network pcap files and the source IP these are

sqlmap – Automatic SQL injection and database takeover Tool

sqlmap is an open source penetration testing tool that automates the process of detecting and exploiting SQL injection flaws and taking over of database servers. It comes with a powerful detection engine, many niche features for the ultimate penetration tester