Downloading and installing forensic tools

Link to the forensic tools on the Blue Cape Security tutorial: https://bluecapesecurity.com/build-your-forensic-workstation/#forensic-vm-tools

The following forensic tools are needed for this course – direct download links:

• AIM https://arsenalrecon.com/downloads/
• KAPE https://www.kroll.com/en/services/cyber-risk/incident-response-litigation-support/kroll-artifact-parser-extractor-kape
  • If you are getting stuck with the loading screen when completing the form on kroll.com you need to deactivate your ad blockers! Alternatively, here’s a direct download link.
  • April 2023 – see update below!
• EZ Tools https://ericzimmerman.github.io/#!index.md
• RegRipper 3.0 https://github.com/keydet89/RegRipper3.0
• Event Log Explorer https://eventlogxp.com/
• Notepad++ https://notepad-plus-plus.org/

KAPE update! As of April 2023 there have been download issues when using the official KAPE registration site. Temporarily, we have also made the download available here: https://drive.google.com/drive/folders/1HmvM4_GGmNlgHE0yWc8oJr6WZ99DyOAb?usp=sharing