TASK 1.52 and Autopsy 1.62 are now available. What is New? - Autopsy has new features that make the Honeynet Scan of the Month a little easier: - Extract or view any number of consecutive data units (fragments, sectors, clusters etc.). - The file type (output from 'file') is shown when viewing a data unit. - Autopsy has a bug fix that caused problems when key word searching a large file (thanks to Michael Stone) - TASK has a beta version of a new tool: 'sorter'. - It runs 'file' on every file in the system and sorts them based on type. It either just writes the name to a file or will save the file. - It also does extension checking to verify the type corresponds the extension. Where do I get them? http://www.atstake.com/research/tools/task MD5 (task-1.52.tar.gz) = 475af26bad7492d61490a69ad7f2472e http://www.atstake.com/research/tools/autopsy MD5 (autopsy-1.62.tar.gz) = 84f8618c84c1c48db0a1d4591ed22b06 What happened to TASK 1.51 and Autopsy 1.61? To reduce the amount of unwanted email for non-TASK and non-Autopsy users, new versions are only being announced on the sourceforge and tct-users lists. So, the previous version was not announced on this list. An exception was made for this release because Autopsy adds features that will assist in the Honeynet Scan of the Month and this list has had discussions about investigating the image with TASK. What Are They? The @stake Sleuth Kit (TASK) is a collection of open source forensic analysis tools for the analysis of Windows and UNIX file systems. Autopsy is an HTML-based graphical interface to the command line tools of TASK. brian ----------------------------------------------------------------- This list is provided by the SecurityFocus ARIS analyzer service. For more information on this free incident handling, management and tracking system please see: http://aris.securityfocus.com
This archive was generated by hypermail 2b30 : Thu Oct 10 2002 - 09:55:30 PDT