Digital Forensics and Sandbox/Detonation Toolkit

Websites for stego, metadata analysis, link analysis, etc.

Steganography

• Aperisolve

Metadata Analysis

• Exif Info.org
• Jimpl (Strong privacy policies - deletes all files within 24 hours after upload)

Link Analysis/Detonation

• urlscan.io
• Browserling (Link Detonation)
• Redirect Detective
  • Also check out WhereGoes (I haven't used it yet)
• OSINT Tools and Techniques

PCAP Analysis

• A-Packets
• WireShark, tshark, tcpdump -r (application and CLI tools, but has everything you need)

Malware Analysis:

I.e., "is it malicious or not":

• Virus Total
• Hybrid Analysis
• OSINT Tools and Techniques Advanced:
• RegShot (application)
• Any.run (requires account - I haven't used it yet)

Evidence Gathering:

• Greenshot or your local OS screen capture and edit tool (I know these are applications, but they are critical nonetheless and are getting a shoutout) Remember: Redaction is a quick courtesy that is both respectful and doesn't get you into trouble.