Volatility is a memory forensics framework for incident response and malware analysis that allows you to extract digital artefacts from volatile memory (RAM) dumps..
The Sleuth Kit is an open source digital forensics toolkit that can be used to perform in-depth analysis of various file systems.
This tool can be used for various digital forensic tasks such as forensically wiping a drive (zero-ing out a drive) and creating a raw image of a drive.
ExifTool is a command-line application used to read, write or edit file metadata information. It is fast, powerful and supports a large range of file formats (although image file types are its speciality).
Free Hex Editor Neo is a basic hex editor that was designed to handle very large files.It’s rich and handy set of features will help all software and hardware developers working with ASCII, hex, decimal, float, double and binary data
LastActivityView allows you to view what actions were taken by a user and what events occurred on the machine. Any activities such as running an executable file, opening a file/folder from Explorer, an application or system crash or a user performing a software installation will be logged..
It is a user-friendly hex editor that allows you to perform low-level editing and modifying of a raw disk or main memory (RAM).