List of Top Digital Forensics Tools 2024 (2024)

1

Splunk Enterprise Security (SIEM) is the company's flagship SIEM product, offered as a premium service to subscribers of Splunk Cloud or Splunk Enterprise.

2

Wireshark is a free and open source network troubleshooting tool.

3

Maltego is an open source intelligence (OSINT) and graphical link analysis tool for gathering and connecting information for investigative tasks, available as a Java application that runs on Windows, Mac and Linux.

4

Basis Technology in Cambridge, MA offers Cyber Triage, an incident response software emphasizing the rapid and accurate collection of endpoint data, touted as better and more comprehensive than antivirus and ideal for non-forensics experts.

5

Intezer offers 24/7 monitoring and investigation of endpoints and security alerts, to identify and automatically resolve false positives, or provide contextual guidance and risk profiles. Within a minute after each new alert, Intezer provides assessments and recommended actions which…

6

THOR is a sophisticated and flexible compromise assessment tool. The manual analysis of many forensic images can be challenging. THOR speeds up this forensic analysis with more than 17,000 handcrafted YARA signatures, 400 Sigma rules, numerous anomaly detection rules and thousands…

7

CAINE (Computer Aided INvestigative Environment) is an Italian GNU/Linux live distribution created as a Digital Forensics project. CAINE offers a complete forensic environment that is organized to integrate existing software tools as software modules and to provide a graphical interface.…

8

Since 2001 Paraben has been a foundation in solutions for mobile devices, smartphones, email, hard drives, and gaming system forensics. Paraben’s focus on mobility led to many other areas of innovation including the research and development into the Internet of Things (IoT) with…

9

Menlo Browsing Forensics is used to examine browser session recordings, including user keystrokes, to get the facts about browser usage.

10

Trellix Endpoint Security (ENS) solutions apply proactive threat intelligence and defenses across the entire attack lifecycle to keep organizations safer and more resilient.

11

GoSecure Responder PRO is a forensics toolkit that helps reverse engineers understand exactly how malware was executed on specific machines, with the ability to disassemble and visualize the results. Further, reverse engineers can produce reports that demonstrate with granular, fine-…

12

Clari5 Graph Intelligence is a visual investigation solution that reveals hidden linkages between customers, accounts and transactions through common attributes shared by t…

13

NetworkMiner is an open source Network Forensic Analysis Tool (NFAT) for Windows. It is developed and supported by Netresec, a small company headquartered in Sweden.

14

Automated threat analysis of suspected malware and credential phishing threats. based on Twinwave, the software identifies and extracts associated forensics for threat detections.

15

16

Phonexia Orbis Investigator is an out-of-the-box solution for the rapid investigation of audio recordings by law enforcement agencies. Powered by voice biometrics and speech recognition, it identifies speakers and other key information in audio recordings automatically and provides…

17

The Query.AI Security Investigations Platform offers access to cybersecurity data wherever it is stored (in the cloud, third-party SaaS, or on-prem), regardless of vendor or tech…

18

Joe Security specializes in the development of malware analysis systems for malware detection and forensics. Based on the idea of deep malware analysis and multi-technology platform, Joe Security offers technologies to analyze malware in depth. Joe Security provides malware analysis…

19

Autopsy is a Windows-based desktop digital forensics tool that is free, open source, and boasts features normally found in commercial digital forensics tools. Developer Basis Technology states the tool is extensible and comes with features that include keyword search, hash matching,…

20

Magnet Forensics is a developer of digital investigation software that acquires, analyzes and shares evidence from computers, smartphones, tablets and IoT related devices, headquartered in Waterloo, Ontario. Magnet Forensics partners with law enforcement, government, military and…

21

Cellebrite, an Israeli company, offers a suite of digital forensics products for law enforcement or other entitites conducting investigations requiring digital intelligence as evidence. Their machine learning tools are designed to extract and analyze forensic data from any mobile…

22

OpenText EnCase Forensic is a court-ready solution for finding, decrypting, collecting and preserving forensic data from a wide variety of devices, while ensuring evidence integrity and integrating investigation workflows.

23

Mobile Verification Toolkit (MVT) is a tool to facilitate the consensual forensic analysis of Android and iOS devices, for the purpose of identifying traces of compromise. It is free and open source.

24

ProDiscover Forensics is a comprehensive digital forensics software that empowers investigators to capture key evidence from computer systems. ProDiscover has capabilities to handle all aspects of an in-depth forensic investigation to collect, preserve, filter, and analyze evidence.…

25

X-Ways Forensics is an advanced work environment for computer forensic examiners and our flagship product that runs on Windows. X-Ways Forensics is presented as not resource-hungry, fast, finds deleted files and search hits that the competitors will miss, and does not depend on setting…