Forensics
Which Forensic Live CD to use? Jan 01 2011 01:38PM
Andreas Schmiet (andreas schmiet googlemail com) (5 replies)
R: Which Forensic Live CD to use? Jan 03 2011 11:22AM
Fausto Filippi (phlipper85 hotmail com)
Re: Which Forensic Live CD to use? Jan 03 2011 04:08AM
Adrian J Milanoski (amilanoski gmail com)
Re: Which Forensic Live CD to use? Jan 03 2011 03:38AM
Omar Herrera (oherrera prodigy net mx)
Re: Which Forensic Live CD to use? Jan 03 2011 01:02AM
Paulo Cesar Breim (PCB) (paulo breim com br)
Re: Which Forensic Live CD to use? Jan 03 2011 12:38AM
Paul D. Bain (paulbain pobox com)
On 1/1/2011 8:38 AM, Andreas Schmiet wrote:
> Hello,
>
> i am working on my diploma thesis about Windows forensics with open
> source tools and want to start with the selection of a Live-CD. I
> gained first experience with Helix, but unfortunately it seems not to
> be supported anymore. And in my diploma thesis i would like to
> reference to a distribution which is state of the art :)
>
> So, i want to ask, what bootable Live-CD environment people on the
> list are using to conduct real world forensic analyses of Windows
> systems?
>
> Thanks in advance,
>
> Andreas

I suggest that you investigate CAINE Ubuntu Linux:

A) http://www.caine-live.net/

B) http://www.linux-magazine.com/w3/issue/122/032-034_caine.pdf

CAINE is actually _two_ distributions: one that can be used for "live"
forensic analysis of a running Windows machine, and one that can be
installed to a hard disk drive and then run as a normal, Linux system.

Sincerely,
Paul Bain

-----------------------------------------------------------------
Certify Software Integrity - thawte Code Signing Certificates
This guide will show you how Code Signing Certificates are used to secure code that can be downloaded from the Internet. You will also learn how these certificates operate with different software platforms.
http://www.dinclinx.com/Redirect.aspx?36;5000;25;1371;0;2;946;005be7f5c8
72ea1f

[ reply ]


 

Privacy Statement
Copyright 2010, SecurityFocus