I’m proud to announce, that my team published yesterday a very cool Live Response CD for Linux and Windows in cooperation with the german journal iX. It contains a brand new Linux Live Response script and a build script for your own static binaries. This Live Response Script contains also an
Archive for the 'Forensics' Category
New Forensics Live Response CD published
«
21 June 2007 |
14:49 |
Forensics, Live Response, Tools |
No Comments | 1,552 Views
»
Booting EnCase Images
«
2 May 2007 |
19:48 |
Forensics, Live Response, Tools |
No Comments | 1,880 Views
»
GetData now bundles their forensics tool MountImage Pro v2 with Virtual Forensic Computing (VFC) from MD5 Ltd. You can now mount a forensic image
GetData now bundles their forensics tool MountImage Pro v2 with Virtual Forensic Computing (VFC) from MD5 Ltd. You can now mount a forensic image
Slides from the iX Forensics Workshop 2007 are online
«
1 May 2007 |
11:17 |
Events, Forensics, Speeches |
No Comments | 1,642 Views
»
All participants of the iX Computer Forensics Workshop 2007 can now download slides and other workshop material
All participants of the iX Computer Forensics Workshop 2007 can now download slides and other workshop material
Sector Inspector (SecInspect.exe)
«
9 April 2007 |
13:52 |
Forensics, Tools |
No Comments | 1,649 Views
»
Microsoft published a tool called Sector Inspector (SecInspect.exe) with the Windows 2003 Server Resource Kit. This is a command-line diagnostics tool that allows administrators to view the contents of master boot records, boot sectors, and IA64 GUID partition tables. Additional features
Microsoft published a tool called Sector Inspector (SecInspect.exe) with the Windows 2003 Server Resource Kit. This is a command-line diagnostics tool that allows administrators to view the contents of master boot records, boot sectors, and IA64 GUID partition tables. Additional features
The Sleuthkit 2.08
«
6 April 2007 |
13:34 |
Forensics, Tools |
No Comments | 1,544 Views
»
The Sleuthkit (TSK) 2.08 is out now. The new version contains
The Sleuthkit (TSK) 2.08 is out now. The new version contains
Assess It All, Or Lose It All
«
13 March 2007 |
11:51 |
Forensics, Stories |
No Comments | 1,626 Views
»
Security Monkey published a good case study about evidence seizure and what happens, if you forget to asses all relevant system data after a security incident occurs.
Security Monkey published a good case study about evidence seizure and what happens, if you forget to asses all relevant system data after a security incident occurs.
DFRWS 2007 File Carving Challenge
«
20 February 2007 |
7:44 |
Forensics, Tools |
No Comments | 1,554 Views
»
The new DFRWS File Carving Challenge for the year 2007 has been released. The say: “The goal of this challenge is to design and develop AUTOMATED file carving algorithms that have high true positive and low false positive rates.”
The new DFRWS File Carving Challenge for the year 2007 has been released. The say: “The goal of this challenge is to design and develop AUTOMATED file carving algorithms that have high true positive and low false positive rates.”
should law enforcement hack?
«
17 February 2007 |
8:37 |
Forensics, Security, Stories |
No Comments | 1,881 Views
»
In Germany we have an ongoing discussion about the question: should police or law enforment hack? Germany’s supreme court determined this month that police may not secretly hack into suspects’ computers. F-Secure made a quick poll
In Germany we have an ongoing discussion about the question: should police or law enforment hack? Germany’s supreme court determined this month that police may not secretly hack into suspects’ computers. F-Secure made a quick poll
