Digital Forensics and Sandbox/Detonation Toolkit
Websites for stego, metadata analysis, link analysis, etc.
Steganography
Metadata Analysis
- Exif Info.org
- Jimpl (Strong privacy policies - deletes all files within 24 hours after upload)
Link Analysis/Detonation
- urlscan.io
- Browserling (Link Detonation)
- Redirect Detective
- Also check out WhereGoes (I haven't used it yet)
- OSINT Tools and Techniques
PCAP Analysis
- A-Packets
- WireShark, tshark, tcpdump -r (application and CLI tools, but has everything you need)
Malware Analysis:
I.e., "is it malicious or not":
- Virus Total
- Hybrid Analysis
- OSINT Tools and Techniques Advanced:
- RegShot (application)
- Any.run (requires account - I haven't used it yet)
Evidence Gathering:
- Greenshot or your local OS screen capture and edit tool (I know these are applications, but they are critical nonetheless and are getting a shoutout) Remember: Redaction is a quick courtesy that is both respectful and doesn't get you into trouble.