All Categories (735)

ArcSight (211)

EnCase (238)

EnCase App Central - Apps - Utility (142)

EnCase App Central - Apps - Artifact (128)

EnCase App Central - Apps - Incident Response (29)

EnCase App Central - Apps - Reporting (8)

EnCase App Central - All Apps (1)

EnCase App Central - Developer Network (1)

EnScript Development Resources (2)

Fortify (10)

NetIQ (1)

Sentinel (169)

Partner Integrations (88)

Products (9)

Resource Center (13)

EnCase

From threat prevention to detection and response, data management to investigation and compliance, OpenText™ Cybersecurity Cloud offers solutions to keep business operations in a trusted state across endpoints, networks, clouds, email, webserver, firewalls and logs. Thanks to the EnScript programming language, applications such as OpenText™ EnCase Forensic and OpenText™ EnCase Endpoint Investigator have outstanding support for custom data-types and extensible workflows.

Clear filters

Sort by:
Newest
Most popular
A-Z
Top Rated

Free
OpenText COMMUNITY
NTFS $UsnJrnl Parser
OpenText

This EnScript allows the user to parse valuable information logging NT file-system operations including time files that have been created, deleted and renamed.
16,535
Free
OpenText COMMUNITY
VSS Examiner
OpenText

Quickly and easily identify and preserve data of interest in Microsoft Windows volume shadow copies.
15,479
Free
OpenText COMMUNITY
Link File & Jump List Parser
OpenText

This EnScript parses recent file-system activity from Microsoft Windows shortcut-link and jump-list files.
13,248
Free
OpenText COMMUNITY
WebCacheV01.dat Internet History Decoder
OpenText

This EnScript parses Internet history data from WebCacheV01.dat files. This includes the Internet history data generated by the Microsoft Internet Explorer and Edge web-browser programs.
10,288
Free
OpenText COMMUNITY
Windows Drive Letter Assignments
OpenText

This EnScript is designed to identify Windows drive-letter assignments for volumes in the current case that have been identified as originating from fixed disks.
10,192
Free
OpenText COMMUNITY
Prefetch Dump (PFDump)
OpenText

This EnScript parses application usage information stored in Microsoft Windows prefetch files. This version supports Window XP through Windows 10 and includes a run-count and one or more last-run dates.
10,030
Free
OpenText COMMUNITY
Create LEF From Folders Using Logical and UNC Path
OpenText

Creates an EnCase logical evidence file from the contents of one or more folders specified by the user.
9,750
Free
OpenText COMMUNITY
Plist Viewer Plugin
OpenText

Use an extended context-menu option to bookmark, decode and extract data contained in Apple property list (.plist) files; automatically view plist files embedded in other plist files.
9,618
Free
OpenText COMMUNITY
Mac OS X Previous Versions Chunk Storage Parser
OpenText

Certain Mac OS X applications support the storage of previous versions of files. This EnScript will recover those files and write them to a logical evidence file so that they can be examined.
9,363
Free
OpenText COMMUNITY
DS_Store Parser
OpenText

This script parsers user-specified .DS_Store files created by Mac OS X. One of the most common reasons for wanting to examine these files is to determine the original name and path of files/folders in t...
8,540
Free
OpenText COMMUNITY
Plist Parser
OpenText

This EnScript allows the examiner to bookmark and parse multiple Apple property-list (plist) files.
8,404
Free
OpenText COMMUNITY
Mac OS X AutoLogin Password Decoder
OpenText

This is a small utility that will decrypt the user-password for a user set to to automatically log-in to a Mac OS X system.
8,235
Free
OpenText COMMUNITY
Search and Bookmark Specific Data Types
OpenText

This EnScript allows the examiner to search for one or more keywords and bookmark the resultant search-hits using specific data-types (picture, ROT13, low ASCII, hex, etc).
7,734
Free
OpenText COMMUNITY
Mac OS X QuickLook Thumbcache Parser
OpenText

Extracts thumbnail images from Mac OS X QuickLook thumbnail cache files.
7,592
Free
OpenText COMMUNITY
UNC Path Preview and Acquire
OpenText

Use this script to preview the files and folders on a remote share using a UNC path. Specific user credentials can be supplied where necessary.
7,545
Free
OpenText COMMUNITY
Mac OS X Outlook Mail Converter
OpenText

This EnScript is designed to convert Microsoft Outlook *.olk14MsgSource and *.olk15MsgSource message-files to EML files and a logical evidence file that can be processed by EnCase.
7,476
Free
OpenText COMMUNITY
Binary Plist Finder
OpenText

This script searches specified items for binary property-list (plist) files. It was designed primarily to recover plist files from unallocated clusters but can also be used to recover plists embedded in...
7,474
Free
OpenText COMMUNITY
Utilities (aka Last Folder) Plugin
OpenText

This is a utility plugin making it easier to open folders used for output, create index queries, select emails containing notable attachments (or vice versa), administer EnScript configuration files, and set EnCase as the viewer for multiple file-types.
7,358
Free
OpenText COMMUNITY
Mac OS X Time Machine Parser
OpenText

This EnScript allows the examiner to resolve the backup paths of blue-checked files in a Mac OS X Time Machine volume without having to make a copy of the volume available to a Macintosh computer.
7,354
Free
New
OpenText COMMUNITY
Apple System Log (ASL) File Parser
OpenText

This EnScript parses user-specified Apple System Log (ASL) files in the current case. Output is by way of bookmarks and a tab-delimited spreadsheet file.
7,246
Free
OpenText COMMUNITY
NTFS $UsnJrnl Parser
OpenText

This EnScript allows the user to parse valuable information logging NT file-system operations including time files that have been created, deleted and renamed.
16,535
Free
OpenText COMMUNITY
VSS Examiner
OpenText

Quickly and easily identify and preserve data of interest in Microsoft Windows volume shadow copies.
15,479
Free
OpenText COMMUNITY
Link File & Jump List Parser
OpenText

This EnScript parses recent file-system activity from Microsoft Windows shortcut-link and jump-list files.
13,248
Free
OpenText COMMUNITY
WebCacheV01.dat Internet History Decoder
OpenText

This EnScript parses Internet history data from WebCacheV01.dat files. This includes the Internet history data generated by the Microsoft Internet Explorer and Edge web-browser programs.
10,288
Free
OpenText COMMUNITY
Windows Drive Letter Assignments
OpenText

This EnScript is designed to identify Windows drive-letter assignments for volumes in the current case that have been identified as originating from fixed disks.
10,192
Free
OpenText COMMUNITY
Prefetch Dump (PFDump)
OpenText

This EnScript parses application usage information stored in Microsoft Windows prefetch files. This version supports Window XP through Windows 10 and includes a run-count and one or more last-run dates.
10,030
Free
OpenText COMMUNITY
Create LEF From Folders Using Logical and UNC Path
OpenText

Creates an EnCase logical evidence file from the contents of one or more folders specified by the user.
9,750
Free
OpenText COMMUNITY
Plist Viewer Plugin
OpenText

Use an extended context-menu option to bookmark, decode and extract data contained in Apple property list (.plist) files; automatically view plist files embedded in other plist files.
9,618
Free
OpenText COMMUNITY
Mac OS X Previous Versions Chunk Storage Parser
OpenText

Certain Mac OS X applications support the storage of previous versions of files. This EnScript will recover those files and write them to a logical evidence file so that they can be examined.
9,363
Free
OpenText COMMUNITY
DS_Store Parser
OpenText

This script parsers user-specified .DS_Store files created by Mac OS X. One of the most common reasons for wanting to examine these files is to determine the original name and path of files/folders in t...
8,540
Free
OpenText COMMUNITY
Plist Parser
OpenText

This EnScript allows the examiner to bookmark and parse multiple Apple property-list (plist) files.
8,404
Free
OpenText COMMUNITY
Mac OS X AutoLogin Password Decoder
OpenText

This is a small utility that will decrypt the user-password for a user set to to automatically log-in to a Mac OS X system.
8,235
Free
OpenText COMMUNITY
Search and Bookmark Specific Data Types
OpenText

This EnScript allows the examiner to search for one or more keywords and bookmark the resultant search-hits using specific data-types (picture, ROT13, low ASCII, hex, etc).
7,734
Free
OpenText COMMUNITY
Mac OS X QuickLook Thumbcache Parser
OpenText

Extracts thumbnail images from Mac OS X QuickLook thumbnail cache files.
7,592
Free
OpenText COMMUNITY
UNC Path Preview and Acquire
OpenText

Use this script to preview the files and folders on a remote share using a UNC path. Specific user credentials can be supplied where necessary.
7,545
Free
OpenText COMMUNITY
Mac OS X Outlook Mail Converter
OpenText

This EnScript is designed to convert Microsoft Outlook *.olk14MsgSource and *.olk15MsgSource message-files to EML files and a logical evidence file that can be processed by EnCase.
7,476
Free
OpenText COMMUNITY
Binary Plist Finder
OpenText

This script searches specified items for binary property-list (plist) files. It was designed primarily to recover plist files from unallocated clusters but can also be used to recover plists embedded in...
7,474
Free
OpenText COMMUNITY
Utilities (aka Last Folder) Plugin
OpenText

This is a utility plugin making it easier to open folders used for output, create index queries, select emails containing notable attachments (or vice versa), administer EnScript configuration files, and set EnCase as the viewer for multiple file-types.
7,358
Free
OpenText COMMUNITY
Mac OS X Time Machine Parser
OpenText

This EnScript allows the examiner to resolve the backup paths of blue-checked files in a Mac OS X Time Machine volume without having to make a copy of the volume available to a Macintosh computer.
7,354
Free
New
OpenText COMMUNITY
Apple System Log (ASL) File Parser
OpenText

This EnScript parses user-specified Apple System Log (ASL) files in the current case. Output is by way of bookmarks and a tab-delimited spreadsheet file.
7,246

Sign in

Marketplace

EnCase

NTFS $UsnJrnl Parser

VSS Examiner

Link File & Jump List Parser

WebCacheV01.dat Internet History Decoder

Windows Drive Letter Assignments

Prefetch Dump (PFDump)

Create LEF From Folders Using Logical and UNC Path

Plist Viewer Plugin

Mac OS X Previous Versions Chunk Storage Parser

DS_Store Parser

Plist Parser

Mac OS X AutoLogin Password Decoder

Search and Bookmark Specific Data Types

Mac OS X QuickLook Thumbcache Parser

UNC Path Preview and Acquire

Mac OS X Outlook Mail Converter

Binary Plist Finder

Utilities (aka Last Folder) Plugin

Mac OS X Time Machine Parser

Apple System Log (ASL) File Parser

You can now subscribe to updates

Subscribe to notifications

Subscribe to notifications