OSForensics is a comprehensive computer forensics package that can help you locate and analyse the enormous amount of digital evidence that may be available on a computer system.
This kind of forensic tool is normally used to discover exactly what someone's been doing on their PC. So for instance you can quickly view the documents they've been opening, the web sites they've visited, the USB devices they've connected and any network shares they've used. It's possible to run text searches of any emails found on a system, from within the program. And you can even see what's inside a computer's memory at the moment, perhaps helping you to recover user names, passwords or other information that wouldn't normally be visible.
But OSForensics has many other useful applications.
There's an Undelete tool, for instance, that you can use to recover apparently lost files.
The clever Mismatch File Search option will scan your hard drive, checking file contents and alerting you when they don't match the extension (a .EXE file has been renamed as a .JPG, say). This could let you know if malware (or maybe another user of your PC) is trying to hide particular files.
There's support for Hash Matching, a technique that helps you quickly identify changed Windows, Microsoft Office or other files, again useful if you're looking for malware.
And if you install OSForensics to a USB flash drive then you can take the program anywhere, and use it on PCs without leaving any significant trace.
While OSForensics is currently free for personal-use/home users only. There's a separate Pro version which an increased number of features, all for $499. See http://www.osforensics.com/purchase.html for a comparison.
- Before deleting search indexes they will now be unloaded if currently in use rather than displaying an error message
- Added check for if the recipient address is in X400 format. If so, try to obtain the SMTP Address instead.
- Fixed a crash caused by partially compressed NTFS drives
- Fixed bug with missing title and from addresses from index
- Fixed bug with PST files not opening from search results due to incorrect/corrupt path
- Fixed bug with x400 email address format when smtp format available for recipients.
- Windows login passwords: Added recovery of cached domain users, updated help file to match new UI and functions.
- Fixed a bug where if the initial start failed (eg invalid target directory) the disabled buttons were not re-enabled, causing OSF to become un-usable
- Updated error message when trying to copy files to clipboard from non supported devices