Topics
Last updates
Documentation Tsurugi Linux [LAB]
Tools listing 2020.1
IMAGING
- Cyclone
- dc3dd
- dcfldd
- dd
- dd_rescue
- ddrescue
- DDRescue-GUI
- esximager
- ewfacquire
- ewfacquirestream
- ftkimager
- guymager
OTHER TOOLS
- AFF
- affcat
- affcompare
- affconvert
- affcopy
- affcrypto
- affdiskprint
- affinfo
- affix
- affrecover
- affsegment
- affsign
- affstats
- affverify
- affxml
- EWF
- ewfdebug
- ewfexport
- ewfinfo
- ewfrecover
- ewfverify
- RAW
- dd BufferSize Calculator
- ddrescuelog
- ddrescueview
- dmde
- ccd2iso
- tableau-parm
HASHING
- hash identifier
- hashboy
- hashdeep
- md5sum
- OpenTimestamps
- QuickHash
- pehash
- sha1sum
- sha256sum
- sha512sum
- FUZZY HASH
- ssdeep
MOUNT
- Disktype
- fdisk
- mmls
- yarp-mount
- udisksctl
- vblade
- vbladed
- VeraCrypt CLI
- VeraCrypt GUI
- ZuluCrypt
- ZuluMount
- affuse
- apfs-fuse
- Disk image mounter
- ewfmount
- fusermount
- kpartx
- mount
- xmount
-- - apfs-dump
- apfs-dump-quick
- apfsutil
- BITLOCKER
- bdeinfo
- bdemount
- dislocker
- dislocker-bek
- dislocker-file
- dislocker-find
- dislocker-fuse
- dislocker-metadata
- CLOUD
- s3fs
- sshfs
- SHADOW COPY
- image_export
- vsc_mount
- vshadowdebug
- vshadowinfo
- vshadowmount
- VIRTUAL
- guestmount
- guestunmount
- snapper
- vmdkmnt
- OTHER TOOLS
- AOETOOLS
- aoecfg
- aoeping
- aoe-discover
- aoe-flush
- aoe-interfaces
- aoe-mkshelf
- aoe-revalidate
- aoe-sancheck
- aoe-stat
- aoe-version
- coraid-update
- ISCSITARGET
- ietadm
- ietd
- AOETOOLS
- PLASO
- PLASO filters
- pinfo
- psort
- psteal
- TimeWolf
- Turbinia
- yarp-timeline
- THE SLEUTH KIT
- Autopsy
- blkcalc
- blkcat
- blkls
- blkstat
- fcat
- ffind
- fiwalk
- fls
- fsstat
- hfind
- icat
- ifind
- ils
- img_cat
- img_stat
- istat
- jcat
- jls
- jpeg_extract
- mactime
- mmcat
- mmls
- mmstat
- sigfind
- sorter
- srch_strings
- tsk_comparedir
- tsk_gettimes
- tsk_loaddb
- tsk_recover
- usnjls
- image_export
- mactime
- APPLE/MAC
- dsstore
- FSEparser
- macMRU-Parser
- OfficePlistParser
- quickLook_parser
- BOOT CODE
- mbr_parser
- bootcode_parser
- UEFIPatch
- UEFITool
- BROWSER
- dumpzilla
- galleta
- pasco
- EMAIL
- Email4n6
- ExtractMsg
- grepmail
- lspst
- Mail Header Analyzer
- MHonArc
- msgconvert
- pdgmail
- pst2dii
- pst2ldif
- readpst
- thunderbird_parser
- FILES
- cacador
- fidentify
- mac-robber
- FILE SYSTEM
- BTRFS
- btrForensics
- BTRFS Tools
- FAT
- fatparser
- NTFS
- AnalyzeMFT
- CyLR
- fsntfsinfo
- usnjls
- USN Journal Parser
- dmde
- XFS
- xfsdump
- xfsinvutil
- xfsrestore
- GOOGLE TAKEOUT
- Location History Visualizer
- JUMP LIST
- lifer
- LnkParse
- METADATA
- BEViewer
- bulk_extractor
- cacador
- dmde
- exiftool
- findwild
- OFFICE DOCUMENTS
- catdoc
- catppt
- docx2txt
- wordview
- xls2csv
- P2P
- DumpTorrent
- Forensic_Emule_Analyzer
- REGISTRY
- auto_rip
- regfexport
- regfinfo
- regfmount
- regfreport
- reglookup
- reglookup-recover
- reglookup-timeline
- regripper
--- - yarp-carver
- yarp-mount
- yarp-print
- yarp-timeline
- TRASH
- rifiuti2
- rifiuti-vista
- WINDOWS LOGS
- bits_parser
- bmc-tools
- danderspritz_evtx
- evtx_dump
- evtx_dump_chunk_slack
- evtxexport
- evtxinfo
- evtx_extract_record
- evtx_filter_records
- evtxinfo
- evtx_record_structure
- evtx_structure
- evtx_templates
- evtxtract
- grokevt-addlog
- grokevt-builddb
- grokevt-dumpmsgs
- grokevt-findlogs
- grokevt-parselog
- grokevt-ripdll
- lfle
- Logon tracer
- BTRFS
- afro
- BEViewer
- bits_parser
- bulk_extractor
- catfish
- Catfish file search
- DDRescue-GUI
- dmde
- dd_rescue
- ddrescue
- ddrescuelog
- ddrescueview
- DDRescue-GUI
- evtxtract
- ext3grep
- ext4magic
- extundelete
- foremost
- lfle
- myrescue
- photorec
- photorec_sorter
- qphotorec
- recoverdm
- RecuperaBit
- rifiuti2
- rifiuti-vista
- safecopy
- scalpel
- scrounge-ntfs
- testdisk
- yarp-carver
- aeskeyfind
- damm
- evolve
- evtxtract
- lfle
- LiME
- muninn
- pdgmail
- procdot
- procmon2dot
- rekall
- rsakeyfind
- swap_digger
- volatility
- voldiff
- vshot
- BINARY
- balbuzard
- binwalk
- byte-stats
- dwarfdump
- hashdeep
- ltrace
- objdump
- pev
- rabin2
- radare2
- strace
- vbindiff
- DEBUGGER
- gdb
- DECODER
- bbcrack
- bbharvest
- bbtrans
- CyberChef
- floss
- rhino
- rhino-debugger
- rhino-jsc
- FLASH
- extractswf
- swfmill
- xxxswf
- JAVA
- JD_GUI
- jadx-gui
- jadx
- JAVASCRIPT
- js-beautify
- JSdetox
- rhino
- rhino-debugger
- rhino-jsc
- MEMORY
- damm
- muninn
- procdot
- procmon2dot
- voldiff
- OFFICE DOCUMENTS
- catdoc
- catppt
- docx2txt
- mraptor
- mraptor3
- msodde
--- - olebrowse
- oledir
- oledump
- oleid
- olemap
- olemeta
- oleobj
- oletimes
- olevba
- olevba3
--- - rtfobj
- vba2graph
- vbashell
- ViperMonkey
- wordview
- xls2csv
- PDF
- analyzepdf
- pdf2graph
- pdf2pdfa
- pdf2ruby
- pdfcop
- pdfdecompress
- pdfdecrypt
- pdfdetach
- pdfexplode
- pdfextract
- pdfgrep
- pdfid
- pdfinfo
- pdfmetadata
- pdf-parser
- pdfsh
- pdftotext
- peepdf
- SANDBOX
- firejail
- Firejail Configuration Wizard
- firetools
- SCANNER
- bamfdetect
- chkrootkit
- clamscan
- DensityScout
- Fenrir
- Lynis auditing tool
- multiscanner
- munin
- phpmalwarefinder
- rkhunter
- udcli
- vtTool
- yara
- XOR
- brxor
- NoMoreXOR
- unxor
- xorsearch
- xorstring
- xortool
- xortool-xor
- OTHER TOOLS
- HashCompletion
- Maltrail Sensor
- Maltrail Server
- trid
TIMELINE
ARTIFACTS ANALYSIS
DATA RECOVERY
MEMORY FORENSICS
MALWARE ANALYSIS
colorize
filecompare
PASSWORD RECOVERY
- aircrack-ng
- BEViewer
- Bruteforece-Wallet
- bulk_extractor
- cmospwd
- cupp
- cupp3
- dsniff
- fcrackzip
- fcrackzipinfo
- hashboy
- hashcat
- hashcat utils
- hashcat plugins
- John The Ripper
- John plugins
- Johnny
- lama
- LaZagne
- net-creds
- pdfcrack
- samdump2
- XHydra
NETWORK ANALYSIS
- arp-scan
- assetfinder
- dhcpdump
- dnstwist
- findserver
- hassh
- hping3
- ipcalc
- iptraf
- lft
- Maltrail Sensor
- Maltrail Server
- masscan
- ndisc6
- netdiscover
- netsed
- nmap
- passiveDNS
- scapy
- ssldump
- sslsplit
- tcptraceroute
- torify
- traceroute
- whois
- wondersharper
- Zenmap
- Zenmap (as root)
- LOGS
- BooLet
- bro
- bro-cut
- ccze
- glogg
- grepcidr
- lnav
- lorg
- multitail
--- - Elastic Search
- Logstash
- Kibana
- CSV
- csvclean
- csvcut
- csvformat
- csvgrep
- csvjoin
- csvjson
- csvlook
- csvpy
- csvsort
- csvsql
- csvstack
- csvstat
- csvtool
- datamash
- in2csv
- sql2csv
- xls2csv
- PCAP
- CapTipper
- driftnet
- dshell
- dshell-decode
- dsniff
- editcap
- Ettercap
- Ettercap GUI
- fatt
- filesnarf
- mailsnarf
- msgsnarf
- net-creds
- ngrep
- passiveDNS
- pcapfix
- PcapViz
- RDP replay
- tcpdump
- tcpflow
- tcpick
- tcpstat
- tcptrace
- tcptrack
- tcpxtract
- tshark
- urlsnarf
- Wireshark
--- - CapAnalysis
- CapAnalysis localhost
- websnort
- websnort localhost
- procdot
- procmon2dot
- Xplico
- Xplico localhost
- WIRELESS
- airodump-ng
- airmon-ng
- find3
- kismet
- LinSSID
PICTURE ANALYSIS
- Darktable
- driftnet
- exif
- exifprobe
- exiftime
- exiftool
- exiv2
- ForensicPlate
- gocr
- jpeg_extract
- mat
- MAT GUI
- OpenStego
- outguess
- outguess-extract
- outguess-histogram
- pija
- pngcrush
- SteCoSteg
- stegbreak
- stegcompare
- stegdeimage
- stegdetect
- steghide
- stegsolve
- tifig
- vinetto
- zsteg
- zsteg-mask
- zsteg-reflow
- COMPUTER VISION
- FACE DETECT LANDMARKS
- Face Detection
- Face Detect Tsurugi
- Face Detect Landmarks Tsurugi
- Face Landmarks Tsurugi
- Face Recognition
- FACE RECOGNITION WEB GUI
- Facerec Web GUI
- FACE RECOGNITION KNN
- Facerec KNN GUI
- LearnArgs KNN
- Learn RecognizeArgs KNN
- RecognizeArgs KNN
- FACE ENCODING
- Build Face Dataset
- Encode Faces Dataset
- Face Recognition Encoding
- Facerec Dataset Encoding GUI
- FACE DIRLIST
- Facerec DirList Image
- FACE RECOGNITION VIDEO
- Facerec video2video (Facerec from video save Video & Image)
- OBJECT DETECTION
- Object detection live write video
- Object detection live
- Object detection video write video
- Object detection video
- Object detection GUI
- FACE DETECT LANDMARKS
- OCR
- gocr
- tesseract
- tesseract installed languages
- video2ocr Tsurugi
--- - ambiguous_words
- classifier_tester
- cntraining
- combine_lang_model
- combine_tessdata
- dawg2wordlist
- lstmeval
- lstmtraining
- merge_unicharsets
- mftraining
- set_unicharset_properties
- shapeclustering
- text2image
- unicharset_extractor
- wordlist2dawg
- ANDROID
- adb
- adb2rec
- adb2recGUI
- android_triage
- Android Free Forensic Toolkit
- apktool
- dmtracedump
- e2fsdroid
- etc1tool
- fastboot
- hprof-conv
- make_f2fs
- mke2fs
- sload_f2fs
- systrace
- BLACKBERRY
- ipddump
- IOS
- apollo
- artemis
- checkra1n
- IdeviceBackup2
- ios_bfu_triage
- iOSbackupexaminer
- iphoneBackupAnalyzer2
- mib_parser.pl
- sysdiagnose-appconduit
- sysdiagnose-mobileactivation
- sysdiagnose-mobilebackup
- sysdiagnose-mobilecontainermanager
- sysdiagnose-net-ext-cache
- sysdiagnose-networkinterfaces
- sysdiagnose-networkprefs
- sysdiagnose-sys
- sysdiagnose-uuid2path
- sysdiagnose-wifi-icloud
- sysdiagnose-wifi-kml
- sysdiagnose-wifi-net
- sysdiagnose-wifi-plist
- WHATSAPP
- Whapa
- Guasap_Forensic
- Whademe
- Whagodri
- DB Browser for SQLite
- kobackupdec
- aws_ir
- aws_respond
- margaritashotgun
- s3fs
- sshfs
- Turbinia
- OSINT Switcher
- OSINT browser
- Tor Browser
---
Entro.py
- analyzer_pub
- organizer_pub
- puller_pub
- aquatone
- buster
- creepy
- danger-zone
- dnstwist
- EmailHarvester
- FinalRecon
- findomain
- gasmask
- Infoga
- instaLooter
- kamerka
- linkedin2username
- Maltego
- Maltego Memory Config
- onioff
- osif
- Photon
- pymeta
- pwnedornot
- raven
- reconcat
- recon-cli
- recon-ng
- recon-rpc
- recon-web
- SnapStory
- skiptracer
- spiderfoot
- sublist3r
- tinfoleak
- TorCrawl
- totalhash
- tweets_analyzer
- URLextractor
- userrecon
- userrecon-py
- waybackpack
- WhatBreach
- youtube-dl
- CONVERSION
- raw2vmdk
- qemu-img
- DOCKER
- DockerScan
- Lynis auditing tool
- guestfish
- machinectl
- systemd-nspawn
- BitAddress
- Bitcoin Bash Tools
- Bitcoin-Tool
- Bruteforece-Wallet
- BTCrecover
- BTCscan
- BX Bitcoin Explorer
- Coinbin
- Electrum
- keyhunter
- NFC
- mfcuk
- mfoc
- nfc-list
- hwclock
- Lynis auditing tool
- multidiff
- TCHunt
- RsaCtfTool
- USBguard
- USBguard-rule-parser
- CherryTree
- KeepNote
- Mobius Forensics
- Pluma Text editor
- Recoll
- RecordMyDesktop [CLI]
- RecordMyDesktop [GUI]
- ScITE Text Editor
- Shutter
- System Profiler and Benchmark
- Take screenshot
- Zim Desktop Wiki
- Vim
- KeepassXC
- VeraCrypt [CLI]
- VeraCrypt [GUI]
- Firefox Web Browser
- HexChat
- Pidgin Internet Messenger
- Tor browser
- Transmission
- axel
- Filezilla
- Links 2
- Oracle Java 8 Web Start
- uget
- Geany
- Code::Blocks IDE
- GHex
- PyCrust
- Python (v2.7)
- Python (v3.5)
- ScITE Text Editor
- shellcheck
- tidy
- XRCed
- Document Viewer
- KeepNote
- OpenOffice
- OpenOffice Base
- OpenOffice Calc
- OpenOffice Draw
- OpenOffice Impress
- OpenOffice Math
- OpenOffice Writer
- Shutter
- Take screenshot
- Eye of MATE Image Viewer
- Image Viewer
- MATE Color Selection
- mtPaint graphic editor
- Simple Scan
- Print Preview
- Darktable
- cntlm
- connect-proxy
- corkscrew
- iodine
- OpenConnect
- Openvpn
- proxychains
- proxytunnel
- rdesktop
- Remmina
- Remotedesktop Client
- rpivot
- sshuttle
- stunnel
- TeamViewer launcher
- tmuxinator
- Tunna
- tmuxinator
- WireGuard
- xvncviewer
- etherwake
- pingtest
- speedtest-cli
- Audacity
- Brasero
- Cheese
- ffmpeg
- ffmpegthumbnailer
- guvcview
- RecordMyDesktop [CLI]
- RecordMyDesktop [GUI]
- rhythmbox
- Sound
- VLC media player
- Dashboard reset
- RAM saturation workaround
- Show Local USB Devices Logs
- BleachBit
- Caja
- dconf Editor
- htop
- hwclock
- Log File Viewer
- MATE Disk Usage Analyzer
- MATE System Monitor
- MATE Terminal
- Midnight Commander
- Terminator
- Tilda
- UXTerm
- XTerm
- Mouse keys switch
- OnBoard Keyboard
- Screen Magnifier
- Screen Reader
MOBILE FORENSICS
CLOUD ANALYSIS
OSINT
VIRTUAL FORENSICS
CRYPTO CURRENCY
OTHER TOOLS
REPORTING
ACCESSORIES
INTERNET
PROGRAMMING
OFFICE
GRAPHICS
OTHER
SOUND & VIDEO
SYSTEM TOOLS
UNIVERSAL ACCESS