The Sleuth Kit & Autopsy: Digital Investigation Tools for Linux, Windows, and other Unixes

sleuthkit.org is the official web site for The Sleuth Kit and Autopsy Browser. Both are open source digital investigation tools (a.k.a. digital forensic tools) that run on Windows and Unix systems (such as Linux, OS X, Cygwin, FreeBSD, OpenBSD, and Solaris). They can be used to analyze NTFS, FAT, Ext2, Ext3, UFS1, and UFS2 file systems and several volume system types.

The Sleuth Kit (TSK) is a C library and a collection of command line tools (based on code from The Coroner's Toolkit (TCT)). Autopsy is a graphical interface to TSK.

Recent Updates

February 2, 2009: TSK 3.0.1 and Autopsy 2.21 are now available for download.
October 19, 2008: TSK 3.0.0 and Autopsy 2.20 are now available for download.
September 26, 2008: TSK 3.0.0b4 and Autopsy 2.20b3 betas are now available. This will probably be the last round of betas.
September 13, 2008: An RSS feed is now available with updates to the site and tools.
August 29, 2008: Nightly snapshots are now available. Betas are also available.

(Merchandise!)


	Copyright © 2003-2009 by Brian Carrier	http://www.sleuthkit.org