Book a Demo!
CoCalc Logo Icon
StoreFeaturesDocsShareSupportNewsAboutPoliciesSign UpSign In
Z4nzu
GitHub Repository: Z4nzu/hackingtool
 Path: blob/master/tools/forensic_tools.py
1269 views
1
# coding=utf-8

2
import os

3


4
import sys

5


6
# Fetching parent directory for importing core.py

7
current_dir = os.path.dirname(__file__)

8
parent_dir = os.path.dirname(current_dir)

9
sys.path.append(parent_dir)

10


11
from core import HackingTool

12
from core import HackingToolsCollection

13


14


15
class Autopsy(HackingTool):

16
    TITLE = "Autopsy"

17
    DESCRIPTION = "Autopsy is a platform that is used by Cyber Investigators.\n" \

18
                  "[!] Works in any OS\n" \

19
                  "[!] Recover Deleted Files from any OS & Media \n" \

20
                  "[!] Extract Image Metadata"

21
    RUN_COMMANDS = ["sudo autopsy"]

22


23
    def __init__(self):

24
        super(Autopsy, self).__init__(installable = False)

25


26


27
class Wireshark(HackingTool):

28
    TITLE = "Wireshark"

29
    DESCRIPTION = "Wireshark is a network capture and analyzer \n" \

30
                  "tool to see what’s happening in your network.\n " \

31
                  "And also investigate Network related incident"

32
    RUN_COMMANDS = ["sudo wireshark"]

33


34
    def __init__(self):

35
        super(Wireshark, self).__init__(installable = False)

36


37


38
class BulkExtractor(HackingTool):

39
    TITLE = "Bulk extractor"

40
    DESCRIPTION = "Extract useful information without parsing the file system"

41
    PROJECT_URL = "https://github.com/simsong/bulk_extractor"

42


43
    def __init__(self):

44
        super(BulkExtractor, self).__init__([

45
            ('GUI Mode (Download required)', self.gui_mode),

46
            ('CLI Mode', self.cli_mode)

47
        ], installable = False, runnable = False)

48


49
    def gui_mode(self):

50
        os.system(

51
            "sudo git clone https://github.com/simsong/bulk_extractor.git")

52
        os.system("ls src/ && cd .. && cd java_gui && ./BEViewer")

53
        print(

54
            "If you getting error after clone go to /java_gui/src/ And Compile .Jar file && run ./BEViewer")

55
        print(

56
            "Please Visit For More Details About Installation >> https://github.com/simsong/bulk_extractor")

57


58
    def cli_mode(self):

59
        os.system("sudo apt install bulk-extractor")

60
        print("bulk_extractor and options")

61
        os.system("bulk_extractor -h")

62
        os.system(

63
            'echo "bulk_extractor [options] imagefile" | boxes -d headline | lolcat')

64


65


66
class Guymager(HackingTool):

67
    TITLE = "Disk Clone and ISO Image Acquire"

68
    DESCRIPTION = "Guymager is a free forensic imager for media acquisition."

69
    INSTALL_COMMANDS = ["sudo apt install guymager"]

70
    RUN_COMMANDS = ["sudo guymager"]

71
    PROJECT_URL = "https://guymager.sourceforge.io/"

72


73


74
class Toolsley(HackingTool):

75
    TITLE = "Toolsley"

76
    DESCRIPTION = "Toolsley got more than ten useful tools for investigation.\n" \

77
                  "[+]File signature verifier\n" \

78
                  "[+]File identifier \n" \

79
                  "[+]Hash & Validate \n" \

80
                  "[+]Binary inspector \n " \

81
                  "[+]Encode text \n" \

82
                  "[+]Data URI generator \n" \

83
                  "[+]Password generator"

84
    PROJECT_URL = "https://www.toolsley.com/"

85


86
    def __init__(self):

87
        super(Toolsley, self).__init__(installable = False, runnable = False)

88


89


90
class ForensicTools(HackingToolsCollection):

91
    TITLE = "Forensic tools"

92
    TOOLS = [

93
        Autopsy(),

94
        Wireshark(),

95
        BulkExtractor(),

96
        Guymager(),

97
        Toolsley()

98
    ]

99


100