FTK Imager a Forensics Tools For MAC OS X
-
Updated
Jul 26, 2018
#
ftk-imager
Here are 21 public repositories matching this topic...
CLI Tools to open, extract and mount FTK Imager's AccessData AD1 forensic images on linux.
-
Updated
May 27, 2025 - C
This report was written for the Digital Forensics Analysis coursework, specifically the first assignment. In which, steps and screenshots for each investigation process are recorded.
incident-response partitioning digital-forensics file-recovery virtual-hardisk ftk-imager active-disk-editor
-
Updated
Jul 17, 2023
A tool written in AHK to automate FTK imager for collection purposes.
-
Updated
Oct 18, 2019 - AutoHotkey
Memory Forensics & Malware Investigation using FTK Imager, Volatility & Autopsy
-
Updated
Feb 13, 2025
Performed a forensic investigation on a digital evidence image file using Autopsy. Analyzed metadata, recovered deleted files, and documented findings.
-
Updated
Dec 4, 2025
A collection of digital forensics lab reports covering Linux artifact recovery, shell history analysis, bash script forensics, and incident reconstruction using tools like SleuthKit, Auditd, and command-line utilities.
cron incident-response steganalysis auditd digital-forensics e3 forensic-analysis shell-history sleuthkit mactime timeline-analysis ftk-imager mobile-forensics linux-forensics bash-artifacts
-
Updated
Jun 18, 2025
Practical forensic recovery cases involving MBR repair, GPT reconstruction, partition recovery, and file evidence validation using hex analysis and FTK Imager.
disk cybersecurity df ntfs mbr gpt digital-forensics file-recovery disk-analysis ftk-imager disk-recovery hex-analysis ecdfp
-
Updated
Mar 13, 2026
Using FTK Imager to create and verify a forensic image of a USB drive.
-
Updated
Oct 8, 2025
MFT-Recover is a file recovery tool for the Windows NTFS 3.1 file system, used since Windows XP through the latest Windows 11. The tool works by parsing Master File Table (MFT) entries and directly accessing the raw volume to retrieve the data of deleted files.
-
Updated
Sep 17, 2025 - C++
CS6503 Digital Forensics
-
Updated
Jun 19, 2025
using FTK imager to extract data from disk
-
Updated
Nov 22, 2023
Covert DD images to E01's using FTK Imager
-
Updated
Mar 14, 2019 - AutoHotkey
Digital forensics investigation report for a Linux insider threat lab using FTK Imager, Bash history, log analysis, and artifact correlation.
incident-response dfir digital-forensics blue-team ftk-imager cyberdefenders linux-forensics soc-analyst
-
Updated
May 11, 2026
Run FTK Imager directly from a portable USB or WinFE environment to perform forensic imaging without installing software on the target system.
incident-response forensics dfir digital-forensics ftk-imager disk-imaging evidence-collection windows-forensics live-forensics digital-forensic-tool live-imaging winfe
-
Updated
Dec 31, 2025
Forensische Analyse eines selbst erstellten USB-Stick-Images – Rekonstruktion gelöschter und manipuliert gespeicherter Dateien mit Autopsy.
education incident-response forensics cybersecurity digital-forensics autopsy ftk-imager cybersecurity-education usb-analysis macb-timeline forensic-report
-
Updated
May 7, 2025
Forensic investigation of a 40 GB Seagate Barracuda HDD acquired via WiebeTech UltraDock v5.5. Includes full expert witness report, FTK acquisition log, and photographic exhibits.
evidence autopsy ftk-imager chain-of-custody digital-forensics-incident-response forensic-report ultradock
-
Updated
Sep 1, 2025
Timelining a reverse shell compromise with FTK Imager.
-
Updated
Mar 18, 2026
Browser-based AccessData AD1 logical image viewer — pure-stdlib Python parser + zero-dependency web UI. Open .ad1 evidence on Mac/Linux/Windows without FTK Imager.
-
Updated
Jun 1, 2026 - Python
Computer forensic using autospy, wireshark, etc.
monitoring packet-analyser data-acquisition wireshark packet-sniffer process-management packet-capture sysinternals forensic-analysis network-packets cache-memory forensics-investigations tcp-udp ftk-imager network-tracking
-
Updated
Apr 19, 2023
Improve this page
Add a description, image, and links to the ftk-imager topic page so that developers can more easily learn about it.
Add this topic to your repo
To associate your repository with the ftk-imager topic, visit your repo's landing page and select "manage topics."