Digital DucksThe Digital Toolbox ← Back to Home

The Digital Toolbox

An index of industry-standard, free, and open-source software used by digital forensic investigators and incident responders.

Disk & Image Analysis

Autopsy 💽
WindowsLinux

The premier open-source digital forensics platform. Excellent for recovering deleted files and timeline analysis.

Learn More
FTK Imager (Lite) 💾
Windows

A crucial first-response tool. Creates bit-for-bit forensic images of hard drives without altering evidence.

Learn More

Memory (RAM) & Network Analysis

Volatility Framework 🧠
WindowsLinux

The world's most widely used framework for extracting digital artifacts from volatile memory (RAM).

Learn More
Wireshark 📡
WindowsLinux

The undisputed king of network protocol analyzers. Lets you capture and interactively browse network traffic.

Learn More
🦆 BOB the AI duck
System online. How can I assist with your investigation today?