The Sleuth Kit
Forensics disk-forensics
Open Source
Disk forensic analysis tools
Platforms:
linux windows macos
Prerequisites:
cli forensics-basics filesystems
Pros and Cons
Ventajas
- + Support for multiple filesystems
- + Powerful CLI tools
- + Open-source
- + Base of Autopsy
- + Well documented
Desventajas
- - Command line only
- - Learning curve
- - No native GUI
Casos de Uso
- Disk forensics
- File recovery
- Timeline analysis
- Evidence collection