Linux Digital Forensic Workstation

Squirrel Forensics delivers a powerful, Linux Digital Forensic Workstation built for forensic investigators, cybersecurity experts, IT teams, IT service providers, educators, students and enthusiasts. Compact and portable, each system runs on Linux-Ubuntu hardware and features a proprietary software-based USB write-blocker.

The Acorn comes preloaded with over 50 trusted open-source forensic tools and back-end applications, carefully selected to support every stage of the DFIR process, from evidence acquisition to analysis and reporting.

Purpose-built for field, lab, and remote investigations, The Acorn offers a streamlined, customisable environment for thorough forensic analysis, compliance-focused workflows, and practical learning. All at an accessible introductory price point under £600.

Evidence

Gather digital forensic evidence across multiple endpoints and media - efficiently and securely.

Events

Capture key endpoint events - logins, file changes, process execution, and more.

Exploits

Identify suspicious behavior and uncover hidden threats across systems and networks.

Startup's & SMEs

The Acorn’s affordability makes it accessible to startups and small businesses. Companies of all sizes face rising cyber threats – data breaches, insider threats, and compliance issues. With The Acorn, internal IT teams, outsourced IT service providers, and security teams can promptly respond to security incidents, investigate suspicious activities, and conduct compliance audits in-house.

This enables IT service providers to offer The Acorn as an additional value-added service to their clients, improving response times, helps meet regulatory obligations while contributing to minimising financial and reputational risk.

Law Enforcement & Government Agencies

Smaller police forces often lack the budget for traditional, expensive forensic equipment. The Acorn provides an affordable, field-ready solution for collecting and preserving digital evidence, imaging drives, analysing USB sticks, and investigating mobile devices quickly and securely at the scene.

National agencies benefit from its portability, allowing deployment for remote field operations, counter-terrorism efforts, and intelligence gathering. It can also be run with TOR and a VPN from the main workstation to ensure anonymity.

Independent Investigators & Consultants

The Acorn is not a replacement for established, high-end forensic platforms but a powerful, portable complement to them. It’s fully customisable and upgradeable, making it suitable for handling a wide range of data volumes and investigative workloads.

It excels as a fast, effective early case assessment tool, helping you triage data quickly, select the right tools, and streamline investigations to match the scope and sensitivity of each case.

The Acorn empowers you to offer professional-grade forensic services from data recovery to malware analysis and network threat investigations wherever you’re needed.

Educational Institutions & Training Centres

Universities and training providers often struggle to give students hands-on forensic experience, as commercial-grade tools are expensive and difficult to license.

The Acorn offers a safe, low-cost environment for exploring real-world forensic tools without the licensing hurdles.

By delivering the same capabilities at a fraction of the price, the Acorn enables educators to integrate live forensic exercises into their courses, better preparing students for careers in cyber incident response and digital forensics.

Become a Beta Tester for The Acorn

Shape the future of digital forensics. Get early access to a powerful new forensic workstation and help us make it even better.

The Acorn is a compact, portable digital forensics workstation created by Squirrel Forensics. Built for independent investigators, Cybersecurity experts, educators, and students.

It features:

A proprietary USB write blocker
Pre-installed open-source forensic tools
A secure Linux OS, optimised for digital investigations
An affordable launch price under £600

We’re inviting forensic professionals to join our Beta Programme.

Ideal if you:

Work in DFIR, IT security, or academia
Want early hands-on access
Are happy to provide feedback or contribute a case study

What you’ll get:

Early access to the Acorn before launch
Direct communication with our development team
Beta tester pricing or a free evaluation unit (limited availability)
Potential inclusion in case studies or social posts
A preview of our upcoming AI Forensics API

First Name

Last Name

Company Name

Phone Number

Country

Message

Cookie	Duration	Description
cookielawinfo-checkbox-analytics	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checkbox-functional	11 months	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checkbox-necessary	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-others	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-performance	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
viewed_cookie_policy	11 months	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.

Introducing The Acorn

Get ready for The Acorn our compact Linux Digital Forensic Workstation with Intel muscle, software-based USB write blocking, and a curated open source digital forensics toolkit. Arriving in the Summer 2025. Join our Launch List