Berikut adalah pembagian 100 forensic tools berdasarkan kategori penggunaan:
1. Disk Imaging & Analysis (12 tools)
FTK, EnCase, WinHex, X-Ways Forensics, AccessData(FTK), Magnet AXIOM, OSForensics, Access FTK Imager, EnCase Imager, Axiom Cyber, Belkasoft Evidence, TSK (The Sleuth Kit)
2. Memory Forensics (5 tools)
Volatility, Volatility Framework, Rekall, Hunchback, Memorize
3. Mobile Forensics (5 tools)
Cellebrite UFED, XRY (XAMN), BlackLight, Checkm8, Autopsy - iPhone
4. Network Forensics (6 tools)
Wireshark, Tcpdump, Ngrep, NetworkMiner, Snort, Xplico
5. Timeline & Event Correlation (3 tools)
Plaso (log2timeline), Redline, PyFlag
6. OSINT & Intelligence Gathering (8 tools)
TheHarvester, SpiderFoot, Shodan, Creepy, Recon-ng, OSINT Framework, OSINT-SPY, Maltego
7. File Recovery / Carving (7 tools)
PhotoRec, TestDisk, Scalpel, Foremost, Extundelete, DC3DD, Raptor
8. File Analysis / Hashing (5 tools)
SSDeep, Yara, DFF, Olefile, Amcache Parser
9. Malware Analysis / Live Analysis (5 tools)
VolDiff, PEStudio, Pyew, EVTXtract, Speedit
10. Live System Analysis (5 tools)
Live View, WindowsSCOPE, Volafox, LRR, NTFS-3G
11. Incident Response / Frameworks (6 tools)
GRR Rapid Response, The Hive, KAPE, SANS SIFT, SIFT (SANS), CAINE Live
12. USB / Device Monitoring (2 tools)
USBDeview, USB Write Blocker
13. iOS / Apple Forensics (3 tools)
BlackLight, Checkm8, Autopsy - iPhone
14. General Utilities & Others (13 tools)
HxD, Email Collector, Oxygen Detective, Dislocker, DC3-MWCP, Speedit, Nmap, SniffPass, AIT, Rifiuti2, Fibratus, Ghiro, Bulk Extractor
