It is currently at version 3.2 and is continually maintained by Brian Carrier.
TSK is, to me anyway, the king of free forensics software packages. Other free tools besides these are out there and I have linked to a list of them later in this post.Ī collection of tools I learned about early on was The Sleuth Kit (TSK). The tools I describe below are ones I personally use(d). I strongly encourage those just getting started to stay up with those resources. Cruising around the net and reading what others had to say on the various forums and blogs helped immensely. I always thought I'd get some training, but before that could happen the free ILook went the way of the Dodo and I had to find something else to learn with.Īfter completing the NW3C courses I described in the last post, I felt like I had a better idea of the types of software tools I needed. I never got comfortable with the software and never wound up using it on a case. In this post, I will go over some of the free and low cost software you can use and related information.Ī few years ago when I was first starting to learn about forensics, I requested a license for the ILook program, which was free to law enforcement at the time.
In my last post, I talked about the various ways one can find training resources to assist in getting started in the field of digital forensics.
