Binwalk
Tool for analyzing, reverse engineering and extracting firmware images.
Bulk_extractor
Program that extracts features such as email addresses, credit card numbers, URLs, and other types of information from digital evidence files.
ewf-tools
Collection of tools for reading and writing EWF files.
Foremost
Recover files using their headers, footers, and data structures.
FTK-Imager
FTK® Imager is a data preview and imaging tool that lets you quickly assess electronic evidence to determine if further analysis.
Photorec
Recover lost files from harddisk, digital camera and cdrom.
Scalpel
Recover files using a header/footer database.
StegCracker
Steganography brute-force utility to uncover hidden data inside files.
Steghide
Steganography program that is able to hide data in various kinds of image- and audio-files.
Stegseek
Stegseek is a lightning fast steghide cracker that can be used to extract hidden data from files. It is built as a fork of the original steghide project and, as a result, it is thousands of times faster than other crackers and can run through the entirety of rockyou.txt* in under 2 seconds.
Stegsolve
Stegsolve is a stegano solver for challenges.
Usbrip
A simple forensics tool with command line interface that lets you keep track of USB device artifacts (i.e., USB event history) on Linux machines.
Volatility
A memory forensics analysis platform.
zbar-tools
Scan and decode bar codes (QR) from one or more image files.
zsteg
Detect stegano-hidden data in PNG & BMP.