Depending on the fragmentation of the image, foremost should be able to recover a lot of the 'obvious' data. If its a big drive it will take a while, and can produce lots and lots of data. So make sure you have plenty of drive space.
The only thing is, formost will not differentiate between intact, deleted, and slack space. The hits it returns will be a mixed-bag of all three. Usually, though, the greater the mess of the returned file, the more likely the file has been deleted, or has come from slack. Even with fragmented data, if you open up the foremost returned file in a hex editor, using an similar intact file as a reference, you can see where other fragged data has been mixed in. You can then cut it out manually. Its not exactly trivial to do all this with masses of data, but short of forking out on Encase, its about the only option open to you.
