Here is the markdown description:

Computer Forensics

Disk Imaging

• Disk Arbitrator: A Mac OS X forensic utility designed to help ensure correct forensic procedures are followed during imaging of a disk device.
• imagemounter: Command line utility and Python package to ease (un)mounting of forensic disk images.
• libewf: Libewf is a library and some tools to access the Expert Witness Compression Format (EWF, E01).
• PancakeViewer: Disk image viewer based in dfvfs, similar to the FTK Imager viewer.
• xmount: Convert between different disk image formats.

Decryption

• hashcat: Fast password cracker with GPU support
• John the Ripper: John the Ripper is an Open Source password security auditing and password recovery tool available for many operating systems.

Steganography

• Steganography for Computer Forensics: A method to hide secret data within a carrier file, often using digital signals or images.
• StegFS: StegFS is an open-source steganography program that embeds hidden information into the least significant bits of files.

Network Forensics

• Wireshark: Capture and analyze network traffic.
• tcpdump: Command-line tool for monitoring and debugging TCP/IP networks.

Smartphones

• Smartphone Forensic Analysis: A method to analyze data from smartphones, including extraction of deleted messages and photos.

Memory Forensics

• Windows Memory Forensics: Analyze Windows system memory to recover deleted files and artifacts.

Miscellaneous

• Docker Forensics: Conduct forensic analysis on Docker containers.
• Learning Network Forensics: A guide for learning network forensics, including packet capture and analysis.

> Visit Computer forensics Website <