Old versionsSee all
Stream Detector is a useful utility which finds all hidden Alternate Data Streams (ADS) on NTFS drives. After finding the alternate data streams, you can extract these streams, delete the file, delete unwanted streams, or export the list of found streams to a log file. This program can also list multiple hidden streams and can properly detect alternate data streams on an actual folder\directory.
Stream Detector is a great tool for forensic analysis to discover hidden files (such as archives, images, videos, executables, databases, etc) within the alternate data streams. This tool can be used to find and delete hidden alternate data streams used by malware and rootkits, such as the infamous Backdoor.Rustock.A that used to hide its kernel-mode driver file into System32 folder as a stream.