.product-purple li { color: #ffff; } p#ipp-innertext { color: #fff; }
Digital Forensics
Exterro FTK Forensic Toolkit

The gold standard for digital forensics.

The gold standard in digital forensics software for repeatable, defensible full-disk image collection, processing and review.

Get a Demo
Buy Exterro FTK
Exterro FTK is trusted by public and private sector organizations worldwide.
Image On
Image On
Image On
Image On
Image On
Image On
Image On
Overview
Streamline forensic investigations to locate key evidence and solve complex cases faster.

Seconds matter in critical investigations. FTK gives investigators a head start by pointing them directly to the artifacts that matter most, narrowing down the scope of their investigation, and reducing the time it takes to close cases.

Get a Demo
Be Instantly Productive
FTK’s intuitive interface design makes it easier for both experienced investigators and non-technical users to navigate within the software.
Find More Artifacts
Eliminate the hours spent manually digging for the data types you’re interested in with categorization that helps you pinpoint key evidence faster.
Search Evidence Faster
Since evidence is processed and indexed up front, you don’t have to wait for index searches to execute during your review, empowering you to find evidence faster.
One Solution
Quickly locate, collect, and analyze digital evidence with the most trusted solution in the industry.

FTK’s scalable processing engine ingests and analyzes large evidence sets quickly, getting data into the hands of examiners sooner so they can focus on investigation rather than waiting on processing. Investigators can automate workflows with scripting, analyze system artifacts such as registry data, recover deleted files through data carving, and access encrypted content when proper credentials are available. The result is more complete analysis and faster case resolution.

Exterro Remote Mobile Review
Investigate mobile device evidence and review chat app data with Mobile Data Processing.

Leverage FTK’s powerful processing engine to parse computer and mobile data in a single database to find connections across data sources. FTK supports native unprocessed UFD extractions from mobile devices provided by tools like Cellebrite, Oxygen, XRY or GrayKey. Review chat messages from apps like Twitter and WhatsApp, reconstructed in their near-native view to quickly interpret the conversation.

Robust Security & Protection
Hundreds of customers trust Exterro’s unparalleled data security.

Exterro's ironclad commitment to securing data has earned us ISO 27001, SOC II, FedRAMP, TISAX, and HiTrust certifications.

Visit our Trust Center
Additional Capabilities
Mac Data Review
Process and analyze datasets containing Apple file systems that are encrypted, compressed or deleted.
Image Identification
Use facial and object recognition to automatically locate images containing that same content.
System Summary Parsing
See every application the user opened, internet activity performed, networks the user was connected to, and where and when this activity occurred.
Portable Case
Export your data into a portable case for offline review. Any labels and bookmarks created by the reviewers are synced back to the original case.
Why Exterro FTK is the tool of choice for unified evidence review.
"FTK is the only tool you need to process and parse ALL of your digital evidence – mobile data, computer data, and cloud app data.  The speed of the FTK processing engine can benefit both individual investigators and forensic lab teams, allowing them to uncover evidence twice as fast."
Wayne Mitchell
Former FBI Senior Forensic Examiner, and current VP of Cyber Risk at Kroll
The industry’s most innovative organizations partner with Exterro

From technology companies to organizations fighting child exploitation, Exterro’s partners make a difference for digital forensic investigators.

Learn about Partners
FAQ
Frequently Asked Questions

Everything you need to know about our platform in one place. features, pricing, integrations, and more, all answered for you.

What types of digital devices can Exterro FTK collect from?
Can Exterro FTK collect directly from mobile devices?
What sort of decryption capabilities does Exterro FTK have?
Can Exterro FTK image a remote endpoint over a network?
Do I really need Exterro FTK Forensic Toolkit when I can use the free FTK Imager tool instead?
What hash functions are available in Exterro FTK?

Resources

Learn how Exterro FTK can power your forensic investigations.

White Papers
Top 10 Most Underrated FTK Features

FTK digital forensic software is feature-rich to enable forensic investigators to collaborate effectively, reduce backlog and automate collections and processing.


Product Briefs
FTK 8.1 for Unified Review

Download this product brief to learn how FTK 8.1 empowers digital forensic investigators to uncover crucial intelligence by investigating mobile, Windows, and Mac data on a single platform.

Product Briefs
Exterro FTK® Suite Product Brief

Find out about the features that make the FTK Suite of digital forensics solutions the industry leader for corporate and public sector investigations.

Exterro FTK Forensic Toolkit

Ready to get started?

Accelerate your forensic investigations with Exterro FTK.

Get a Demo
Redefining how your business manages data risk.
Get Started
Mitigating enterprise data risk.
ResourcesBlogPodcastCase StudiesWhitepapers
ProductseDiscoveryDigital ForensicsData GovernancePlatform & Intelligence
IndustriesFinancial Services & InsuranceHealthcare & Life SciencesEnergy & UtilitiesGovernment & Public Sector
CompanyNews & PressCareersTrust CenterContact Us
© 2026 Exterro. All rights reserved
Trust CenterModern Slavery StatementPrivacy PolicyWebsite Terms of Use
Do Not Sell or Share My Personal Information