Re: Windows forensics with Linux analysis machine

From: Russell J. Lahti (russellat_private)
Date: Thu Aug 21 2003 - 14:25:51 PDT

Next message: Meritt James: "Re: Data hidden in Word documents"

Previous message: Christopher N. Hyde: "RE: Windows forensics with Linux analysis machine"
In reply to: tetsujin: "RE: Windows forensics with Linux analysis machine"
Next in thread: Reava, Jeffrey [IT/0200]: "RE: Windows forensics with Linux analysis machine"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

That CD contains absolutely *nothing* even remotely
related to what he was asking for.  He wants something
that can mount an NTFS/FAT partition for forensic
investigation.

That CD contains DDoS testing and defense tools.

-Russell

tetsujin wrote:
> All you'll ever need.
> 
> http://www.meliorinc.com/html/fire_cd.html
> 
> -----Original Message-----
> 
> I'm looking for good tools that will allow me to do a full investigation of
> a Windows image using linux.  I'm looking at Autopsy and Sleuthkit now.  Are
> there any other tools that will allow me to do the full investigation (view
> registry structures, undelete files, etc) under linux?


-----------------------------------------------------------------
This list is provided by the SecurityFocus ARIS analyzer service.
For more information on this free incident handling, management 
and tracking system please see: http://aris.securityfocus.com

Next message: Meritt James: "Re: Data hidden in Word documents"
Previous message: Christopher N. Hyde: "RE: Windows forensics with Linux analysis machine"
In reply to: tetsujin: "RE: Windows forensics with Linux analysis machine"
Next in thread: Reava, Jeffrey [IT/0200]: "RE: Windows forensics with Linux analysis machine"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Fri Aug 22 2003 - 17:50:11 PDT