p0f – Passive Traffic Analysis OS Fingerprinting and Forensics Tool
According to Kali, P0f is a tool that utilizes an array of sophisticated, purely passive traffic fingerprinting mechanisms to identify the players behind any incidental TCP/IP communications (often as little as a single normal SYN) without interfering in any...
Creating and Analyzing a Malicious PDF File with PDF-Parser Tool
This tool will parse a PDF document to distinguish the central components utilized as a part of analyzed file. It won't render a PDF archive.
Features included:
Load/parse objects and headers
Extract meta data (author, description, ...)
Extract text from...
Binwalk – Analyzing Embedded Files and Executable Code with Firmware Images
Binwalk is a device for looking a given binary image for embedded documents and executable code. Specifically, it's far designed for figuring out files and code embedded inner of firmware images.
Binwalk uses the libmagic library, so it is compatible...
Pdgmail Forensic Tool to Analysis Process Memory Dump
Pdgmail Forensic tool to analysis process memory dump for Gmail data. It will discover what it can out of the memory image including contacts, emails, last access times, IP addresses, basic headers etc.
Author: Jeff Bryner
Analysis with Pdgmail
In this article, we...
USB Forensics – Reconstruction of Digital Evidence
Digitial Forensics analysis of USB forensics include preservation, collection, Validation,
Identification, Analysis, Interpretation, Documentation, and Presentation of digital evidence derived from digital sources for the purpose of facilitating or furthering the reconstruction of events found to be criminal.
Disk Imaging...
