Re: Windows forensics with Linux analysis machine

From: Steven Becker (steve@infosec-solutions.com)
Date: Thu Aug 21 2003 - 14:38:53 PDT

Next message: Robert Goto: "Laptop Adapters"

Previous message: Meritt James: "Re: Data hidden in Word documents"
In reply to: J: "Windows forensics with Linux analysis machine"
Next in thread: Reava, Jeffrey [IT/0200]: "RE: Windows forensics with Linux analysis machine"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Check out:

FIRE <http://fire.dmzs.com/>
Knoppix <http://www.knopper.net/knoppix/index-en.html#description>
 
 
Quoting JJ <jjhorner@SAFe-mail.net>:

> All,
> 
> I'm looking for good tools that will allow me to do a full investigation of a
> Windows image using linux.  I'm looking at Autopsy and Sleuthkit now.  Are
> there any other tools that will allow me to do the full investigation (view
> registry structures, undelete files, etc) under linux?
> 
> Thanks,
> JJ
> 
> ---------------------
> J. J. Horner
> CISSP,CCNA,CHSS,CHP
> 
> -----------------------------------------------------------------
> This list is provided by the SecurityFocus ARIS analyzer service.
> For more information on this free incident handling, management 
> and tracking system please see: http://aris.securityfocus.com
> 
> 




-----------------------------------------------------------------
This list is provided by the SecurityFocus ARIS analyzer service.
For more information on this free incident handling, management 
and tracking system please see: http://aris.securityfocus.com

Next message: Robert Goto: "Laptop Adapters"
Previous message: Meritt James: "Re: Data hidden in Word documents"
In reply to: J: "Windows forensics with Linux analysis machine"
Next in thread: Reava, Jeffrey [IT/0200]: "RE: Windows forensics with Linux analysis machine"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Fri Aug 22 2003 - 17:53:35 PDT