Forensic Application Packages and other Multi-Purpose Applications

These tools provide multiple functions, often including features also listed in other pages.

• AFF Package – “VMWare Appliance with AFFLIB, aimage, SleuthKit, fiwalk, and other forensic tools already installed”
  http://www.afflib.org/applianaces.php
• Autopsy Forensic Browser – “graphical interface to the command line digital investigation tools in The Sleuth Kit”
  http://www.sleuthkit.org/autopsy/index.php
• Computer Forensic Investigative Toolkit (CFIT) (Defence Science and Technology Organization, Australian Department of Defence)
  
• DataLifter - suite of tools "designed to assist with Computer Forensics, Information Auditing, Information Security and Data Recovery"
  http://www.datalifter.com/
• Digital Intelligence Forensic Software
  http://www.digitalintelligence.com/software/disoftware.php
• Distributed Environment for Large Scale Investigation (DELV)
• EnCase Forensic (Guidance Software)
  http://www.guidancesoftware.com
• Farmer’s Boot CD (FBCD) – bootable CD with Linux and forensic tools
  http://www.forensicbootcd.com/
• FCCU GNU/Linux Forensic Boot CD – bootable CD with Linux and forensic tools
  http://www.lnx4n6.be/
• Forensic Acquistion Utilities - George M. Garner
  http://www.gmgsystemsinc.com/fau/
• Forensic Toolkit (AccessData)
  http://www.accessdata.com/
• Foundstone Network Security (Division of McAfee) - Free Tools [See specifically Foresnic Tools]
  http://www.foundstone.com/us/resources-free-tools.asp
• Helix (e-fense) – bootable CD with Linux and forensic tools
  http://www.e-fense.com/
• i2 Limited - "integrated suite of products enables investigators and analysts to quickly understand complex scenarios and volumes of seemingly unrelated data, perform analysis and communicate the results" (such as link and timeline analysis)
  http://www.i2.co.uk/
• iLook (Perlustro)
  http://www.perlustro.com/
• InfinaDyne – most known for their CD/DVD tools (especially CD/DVD Inspector), but also offer forensic tools for flash drives
  http://www.infinadyne.com/
• Norton SystemWorks (Symantec)
  http://www.symantec.com/norton/systemworks-premier
• Open Computer Forensics Architecture (OCFA)
  http://sourceforge.net/projects/ocfa
• Paraben Forensics
  http://www.paraben-forensics.com/
• PERPOS Tools
  http://perpos.gtri.gatech.edu/publications/PERPOS%20TR%202005-02.pdf
• ProDiscover (Technology Pathways)
  http://www.techpathways.com/
• PyFLAG
  http://www.pyflag.net/
  http://sourceforge.net/projects/pyflag/
• Real-time Analytical Intelligence Database (RAID) (U.S. Department of Justice) - "relational database used to record key pieces of information and to quickly identify links among people, places, businesses, financial accounts, telephone numbers, and other investigative information examined" by analysts
  http://www.usdoj.gov/ndic/domex/raid.htm
• The Sleuth Kit – "collection of UNIX-based command line file and volume system forensic analysis tools"
  http://www.sleuthkit.org/
• SMART (ASR Data)
  http://www.asrdata.com/tools/
• Windows IR/CF Tools - various forensic features, including parsing of the Windows Registry
  http://sourceforge.net/project/showfiles.php?group_id=164158
• XIRAF
  http://www.dfrws.org/2006/proceedings/7-Alink.pdf