ForensicsWiki will continue to operate as it has before and will not be shutting down. Thank you for your continued support of ForensicsWiki.

Bulk Extractor

From ForensicsWiki
Revision as of 21:02, 2 December 2011 by Simsong (Talk | contribs)

Jump to: navigation, search
Bulk Extractor
Maintainer: Simson Garfinkel
OS: Linux,Windows,Mac OS X
Genre: Analysis
License: Public Domain

Bulk Extractor (bulk_extractor) is a feature extraction tool written in C++ for extracting features from media images. Extracted features are stored in feature files that can be easily inspected, parsed, or processed with automated tools. Some Python programs that process feature files are available. Also, feature files may be browsed using the Bulk Extractor Viewer.

Bulk Extractor is fast. Rather than parsing file system structures, it parallel-processes 16MiByte pages of media on multiple cores.

Bulk Extractor is thorough. It searches for multiple feature types. Additionally, it recursively decompresses and reprocesses compressed data.

See Also

External Links