Skip to content

al3ks1s/AD1-tools

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

49 Commits
.github/workflows
.github/workflows
 
 
AD1Tools
AD1Tools
 
 
m4
m4
 
 
Makefile.am
Makefile.am
 
 
README.md
README.md
 
 
autogen.sh
autogen.sh
 
 
clean.sh
clean.sh
 
 
configure.ac
configure.ac
 
 

Repository files navigation

AD1-tools

CLI Tools to open, extract and mount AccessData AD1 images on linux.

Features :

  • File extraction
  • Digest verification
  • Segmented files handling
  • Filesystem mounting of images through FUSE

Todo :

  • Image decryption

See https://al3ks1s.fr/posts/adventures-part-1/ for explanations about the AD1 Format

Installation

Install from deb

Grab the latest release

dpkg --install ad1tools_1.0.0-1_amd64.deb

Install from Git

$ git clone https://github.com/al3ks1s/AD1-tools.git
$ cd AD1-tools
$ ./autogen.sh
$ cd build
$ ../configure
$ make install

Usage

ad1info

Usage: ad1info [OPTION...] ad1info [OPTIONS] -i FILENAME
Print important information of an AccessData AD1 Logical Image.

  -i, --input=FILE           Input AD1 file.
  -q, --quiet                Produce a quiet output.
  -t, --tree                 Produce a tree of the file hierarchy.
  -v, --verbose              Blurt a lotta text.
  -?, --help                 Give this help list
      --usage                Give a short usage message
  -V, --version              Print program version

ad1verify

Checks the integrity of an AccessData AD1 Logical Image.

  -f, --full-ckeck           Check all files hashes against their saved hash.
  -i, --input=FILE           Input AD1 file.
  -q, --quiet                Produce a quiet output.
  -s, --sha1                 Compare sha1 hashes instead of md5.
  -v, --verbose              Blurt a lotta text.
  -?, --help                 Give this help list
      --usage                Give a short usage message
  -V, --version              Print program version

ad1extract

Extract the content of an AccessData AD1 Logical Image.

  -d, --output-dir=DIR       Directory to extract the files to.
  -i, --input=FILE           Input AD1 file.
  -m, --metadata             Apply metadatas to extracted files (eg:
                             timestamps).
  -q, --quiet                Produce a quiet output.
  -s, --skip-hash            Skip the integrity check of a file on extraction.
  -v, --verbose              Blurt a lotta text.
  -?, --help                 Give this help list
      --usage                Give a short usage message
  -V, --version              Print program version

ad1mount

Mounts an AccessData AD1 Logical Image as a read only filesystem.

  -i, --input=FILE           Input AD1 file.
  -m, --mnt=DIR              Inout AD1 file.
  -q, --quiet                Produce a quiet output.
  -v, --verbose              Blurt a lotta text.
  -?, --help                 Give this help list
      --usage                Give a short usage message
  -V, --version              Print program version

Unmount using fusermount : fusermount -u [mountpoint]

ad1decrypt

Not yet supported

Acknowledgements

About

CLI Tools to open, extract and mount FTK Imager's AccessData AD1 forensic images on linux.

Topics

ftk-imager access-data ad1

Resources

Readme
Activity

Stars

11 stars

Watchers

2 watching

Forks

5 forks
Report repository

Releases 1

ad1tools v1.0 Latest
Jul 12, 2024

Packages

No packages published

Contributors 3

Languages