Swap Recon

Swap Recon performs brute-force decompression of Windows 10 & 11 swap (e.g. pagefile.sys & swapfile.sys) with a focus on avoiding duplicate & missing pages as well as the correct order of pages. Swap Recon was built when we could not find any tools or techniques to decompress modern Windows swap both comprehensively & usefully in one of our highest-stakes cases.

Successfully Used Swap Recon

“In a case with many Windows OS based computers, I successfully used Swap Recon on pagefile.sys files to extract history for visited .onion sites as well as credentials for some sites, commands that had been run in the prompt, and a lot of good candidates for password attacks. I was only able to extract this valuable data from decompressed blocks of swap produced by Swap Recon, not from the raw swap (pagefile.sys) files.”

Søren
Danish Police

1 Year Plan
$907
~ $75/mo | Save 0%

    • Email Support

    • Purchase Annually

    • No Discount

Buy Now

3 Year Plan

$2,448

~ $68/mo | Save 9%

5 Year Plan

$3,840

~ $64/m | Save 14%

View Pricing & Plan Details
Prices shown in USD and without tax.