Using Kali Linux
in Forensics
The
following image displays the main Kali tools to use in
forensics:
You
can see information on some of these tools in the links :
- dff-guy for file recovery
- binwalk firmware analysis tool
- bulk_extractor recovers e-mal, credit card numbers, etc.
- volatility supports memory dumps from all major 32- and 64-bit Windows versions
- foremost recover lost files
- galleta examines cookie files produced by Internet Explorer
This
page is maintained by Al
Bento who can be reached at abento@ubalt.edu.
This page was last updated on November 10, 2017. Although we will
attempt
to keep this information accurate, we can not guarantee the accuracy of
the information provided.