All, For those interested in Cisco router forensics, I've put together the first revision of a tool that helps automate collecting volatile information from a Cisco router... Doesn't go into forensically analyzing the flash card, but does attempt to collect as much useful volatile information as possible... The idea came from Jesse Kornblum at the Air Force OSI who wanted a tool that would let non-investigative personnel automatically collect volatile information from a router before they started "troubleshooting it" (read "rebooting to see if that fixes the problem") I just posted version 0.2 at http://cybercrime.kennesaw.edu/creed Check it out and let me know if you have any suggestions for improvement... Thanks! Thomas -- Thomas Akin, CISSP Director, Southeast Cybercrime Institute Continuing Education @ Kennesaw State University takinat_private * www.cybercrime.kennesaw.edu ----------------------------------------------------------------- This list is provided by the SecurityFocus ARIS analyzer service. For more information on this free incident handling, management and tracking system please see: http://aris.securityfocus.com
This archive was generated by hypermail 2b30 : Fri Oct 11 2002 - 05:11:45 PDT