Digital Forensics Framework
| Original author(s) | Frédéric Baguelin, Solal Jacob, Christophe Malinge, Jérémy Mounier |
|---|---|
| Developer(s) | Frédéric Baguelin, Solal Jacob, Jérémy Mounier |
| Stable release | 1.3.0
/ February 28, 2013 |
| Written in | C++, Python, PyQt4 |
| Operating system | Unix-like, Windows |
| Type | Computer forensics |
| License | GPL |
| Website | http://www.digital-forensic.org/ |
Digital Forensics Framework (DFF) is a framework which can be used to perform computer analysis and also develop its own tool set through the use of its API. DFF relies on core libraries (API) and lots of modules which are, for example, in charge of reconstructing volumes and filesystems with recovery of deleted items and unallocated area but also to extract metadata contained in different file types. Its internal search engine eases the finding of evidences.
User interfaces
Digital Forensics Framework offers two user interfaces, a graphical one developed in PyQt and providing classical tree view but also more advanced features such as recursive view, tagging, live search or bookmarking. Its command line interface enables to perform digital investigation remotely and comes with usual functionnalities available in common shell such as completion, tasks management, globing or keyboard shortcuts . DFF can also run batch scripts at startup to automate repetitive tasks. Advanced users and developers can also use DFF directly from a Python interpreter to script their investigation.
External links
 | This software article is a stub. You can help Wikipedia by expanding it. |