Search This Blog

Showing posts with label Forensic Analysis Tool. Show all posts

Browser Password Decryptor v2.5 released



SecurityXploded has released the Browser Password Decryptor version 2.5.
Browser Password Decryptor is the FREE software to instantly recover website login passwords stored by popular web browsers.

Here are the top features of BrowserPasswordDecryptor:
  • Instantly decrypt and recover stored encrypted passwords from popular web browsers.
  • Comes with both GUI interface as well as Command-line version.
  • Right Click Context Menu to quickly copy the password
  • Recover password of any length and complexity.
  • Automatically discovers all supported Applications and recovers all the stored passwords.
  • Sort feature to arrange the recovered passwords in various order to make it easier to search through 100's of entries.
  • Save the recovered password list to HTML/XML/Text file
  • Easier and faster to use with its enhanced user friendly GUI interface.

Download it from here 






Orion Browser Dumper v1.0:DarkCoderSc released a new a Forensic tool



The developer of DarkComet RAT ,Jean-Pierre LESUEUR (DarkCoderSc), has released a new Forensic tool called 'Orion Browser Dumper' .

Orion Browser Dumper is an advanced local browser history extractor (dumper), in less than few seconds (like for Browser Forensic Tool) it will extract the whole history content of most famous web browser, Actually Internet Explorer, Mozilla FireFox, Google Chrome, COMODO Dragon, Rockmelt and Opera.

Download the Tool from here:
http://www.darkcomet-rat.com/misctools.dc


NetworkMiner 1.1! ~ Network Forensic Analysis Tool (NFAT) for Windows


NetworkMiner is a Network Forensic Analysis Tool (NFAT) for Windows. NetworkMiner can be used as a passive network sniffer/packet capturing tool in order to detect operating systems, sessions, hostnames, open ports etc. without putting any traffic on the network. NetworkMiner can also parse PCAP files for off-line analysis and to regenerate/reassemble transmitted files and certificates from PCAP files.


NetworkMiner collects data (such as forensic evidence) about hosts on the network rather than to collect data regarding the traffic on the network. The main user interface view is host centric (information grouped per host) rather than packet centric (information showed as a list of packets/frames).

NetworkMiner has, since the first release in 2007, become popular tool among incident response teams as well as law enforcement. NetworkMiner is today used by companies and organizations all over the world. 


This is the list of changes for NetworkMiner 1.1:

  • Extraction of parameters sent to Google Analytics into NetworkMiner’s “Host Details”. These parameters include: screen resolution, color depth, browser language and flash version.
  • You can drag-and-drop one or multiple pcap files onto NetworkMiner.exe to have it start up and begin loading the dropped pcap files. You can also submit your pcap files as arguments from the command line.
  • Multiple SMB/CIFS and NetBIOS improvements, such as support for multiple simultaneous SMB file transfers over the same TCP session as well as support for NetBIOS Session Service keep-alive messages.
  • Added support for Point-to-Point Protocol (PPP) frames in pcap files.
  • Improved stability when loading pcap files. Thanks to psteier for identifying this bug.