background preloader

How to create your own free computer forensics kit on a USB drive

How to create your own free computer forensics kit on a USB drive
The super-sleuth detectives in TV show CSI have some very nifty tools to help solve crimes. But the need to keep things interesting and wrap the show up in an hour means the technology used in each episode bears little resemblance to the work of real forensic experts. Or does it? When it comes to computer forensics, today's tools are becoming more advanced, leaving fewer places to hide information. This tension between fact and fiction took on a whole new dimension when Microsoft's police-only forensic toolkit was leaked on the internet. Reports say that it has more in common with CSI than The Bill. We're going to show you how to mimic Microsoft's offering using open-source software to unlock Windows accounts, investigate suspicious activity, see any file on a Windows disk and even peruse files that others believe have been permanently deleted. Forensic toolkit During November 2009, it was announced that someone had leaked Microsoft's secret crime-fighting software online. Related:  open sourceDigital Forensicsdigital Forensics

100 Amazing How-To Sites to Teach Yourself Anything | Rated Colleges Posted by Site Administrator in Online Learning May 7th, 2009 Learning new skills and expanding your knowledge doesn’t have to cost you an arm and a leg. There are loads of free resources on the Web that can help you find instructional videos, tutorials and classes to learn a wide variety of skills from fixing basic car problems to speaking another language. With 100 sites to choose from, you’re bound to find something here that will help you learn just about anything you could want. General Tutorials These sites offer a wide range of tutorials and videos. Around the House Want to know how to fix that broken cabinet or hang up some great wallpaper? Business and Management If you feel like you’re seriously lacking on business and management skills at work, no need to worry. KnowThis? Language and Writing Those who want to learn a new language, improve their writing skills or just learn more about literature will be well-served by these instructional sites. Technology Math S.O.S. Science Creativity

Open Source Living 10 Data Recovery Tools You Can Download For Free [Windows] It happens to the best of us. We are working on that very important file when suddenly disaster strikes. It accidently gets deleted, corrupted, the computer died or a number of unfortunate things that prevent you from gaining access to the file. What’s worse, you don’t have a backup and are in desperate need of those important files urgently. Well, don’t fret as it is possible to recover those deleted files. When you delete a file, you don’t actually ‘delete’ it. Recommended Reading: 20+ Data Backup & Synchronization Tools For Hard Drives 1. PhotoRec is a powerful command line recovery tool that can recover your lost data by bypassing the file system, perfect for when your computer can see the drive but cannot access it or for use on a formatted drive. [Download here] 2. Recuva provides a number of tools and features that makes recovering your data easier. [Download here] 3. There are times when your drive’s file system will get damaged and you are unable to access the data within. 4. 5.

SIFT Kit/Workstation: Investigative Forensic Toolkit Download SANS Investigative Forensic Toolkit (SIFT) Workstation Version 3.0 Download SIFT Workstation VMware Appliance Now - 1.5 GB Having trouble downloading? If you are having trouble downloading the SIFT Kit please contact sift-support@sans.org and include the URL you were given, your IP address, browser type, and if you are using a proxy of any kind. Having trouble with SIFT 3? If you are experiencing errors in SIFT 3 itself, please submit errors, bugs, and recommended updates here: How To: Download Ubuntu 14.04 ISO file and install Ubuntu 14.04 on any system. -> Once installed, open a terminal and run "wget --quiet -O - | sudo bash -s -- -i -s -y" Congrats -- you now have a SIFT workstation!! SIFT Workstation 3.0 Overview "The SIFT Workstation has quickly become my "go to" tool when conducting an exam. Key new features of SIFT 3.0 include: Installation

Live View 101 Simple Truths We Often Forget post written by: Marc Chernoff Email It‘s not where we stand but in what direction we are moving. Sometimes we find ourselves running in place, struggling to get ahead simply because we forget to address some of the simple truths that govern our potential to make progress. So here’s a quick reminder: The acquisition of knowledge doesn’t mean you’re growing. Photo by: Alexander Steinhof If you enjoyed this article, check out our new best-selling book. And get inspiring life tips and quotes in your inbox (it's free)... a HTPC Media Center for free! Large List of Free Forensic Software While I personally have never gotten into forensics due to liability reasons, it has always been something that has interested me. Recently, one of our forum members (mm201) posted an amazing resource with a large collection of free forensics tools for Windows, Mac and Linux as well as iOS, Android & Blackberry devices. If you are already doing forensics work or simply have an interest in it, be sure to check out this site: The tools on the site are divided into the following categories: Disk tools and data captureEmail analysisGeneral toolsFile and data analysisMac OS toolsMobile devicesFile viewersInternet analysisRegistry analysisApplication analysis If you do wish to get involved with forensics, find out what training and licensing requirements you need to have to operate in your state.

Digital Forensics Links This is a growing list of [digital/cyber/computational] forensic related resources. I agree, some serious reorganization is required. Please send any additions, corrections and/or dead-links to kulesh@cis.poly.edu I am now at Digital Assembly. We just released an excellent photo forensics product called Adroit Photo Forensics and have been helping people recover deleted photos with Adroit Photo Recovery. //Conferences//DFRWS Aug. 7- 9, 2002CSDC Idaho, Sep. 23 - 25, 2002EAFS 2003, Istanbul, Sep. 22-27, 2003 //People//Vlasti BroucekBrian CarrierFred CohenDave DittrichDan FarmerPeter GutmannChet HosmerLance SpitznerWietse Venema //News Groups//Mailing Lists// AAFS-COMPUTER-LIST [at] lists.mitre.org forensics [at] securityfocus.com //Papers//Not all papers are directly tied to forensics. //Articles//FAQs//Talks// Data Mining for Security Applications [TeX] [PDF]Who has machine readable information on you? //Tools//

Software - WhoCrashed, automatic crash dump analyzer WhoCrashed Introduction Just released: WhoCrashed v 5.50 with support for Windows 10 WhoCrashed reveals the drivers responsible for crashing your computer Whenever a computer running Windows suddenly reboots without displaying any notice or blue screen of death, the first thing that is often thought about is a hardware failure. In reality, most crashes are caused by malfunctioning device drivers and kernel modules. In case of a kernel error, most computers running Windows do not show a blue screen unless they are configured to do so. WhoCrashed shows the drivers that have been crashing your computer with a single click. Normally, debugging skills and a set of debugging tools are required to do post-mortem crash dump analysis. If your computer crashed and produced a blue screen It is suggested that you run WhoCrashed. If your computer unexpectedly reset or shut down If your computer unexpectedly reset or shut down, it is suggested that you run WhoCrashed. Screen shot Note

Self Improvement | Use a Journal For Self-Discovery and Self-Expression | The Self Improvement Blog By Garrett Coan – As a therapist, I often suggest to clients that they explore their feelings and thoughts by keeping a journal. Sometimes clients ask for a bit of direction with this process. Here are some journaling ideas if you’re not sure where to start: 1. Write down what happened today and how you felt about it. 2. 3. 4. 5. 6. 7. 8. 9. 10. Here are some examples: a. b. c. d. e. f. g. h. i. j. 11. 12. 13. 14. 15. 16. 17. 18. 19. 20. a. b. c. d. e. 21. 22. 23. 24. 25. 26. a. b. c. 27. 28. 29. 30. 31. 32. 33. Garrett Coan, MSW, LCSW is Founder and Director of the Center for Creative Counseling, a team of expert and licensed therapists and coaches providing phone and internet counseling services to clients throughout the United States and worldwide. Article Source:

50 Open Source Tools to Make Your Life Easier The open source community is vibrant, continually growing, and just loves to create applications and tools to make lives easier. Here are 50 of our favorite open source apps that help us do everything from managing pictures on our computer to learning about Jupiter and Mars. Chandler – An information management application for personal use or small group collaboration. Includes integrated calendaring, data organization tools, and allows backup and data sharing via web access. Tomboy – A cross-platform note-taking application packed with features text highlighting, font styling, inline spellchecking, and more. BasKet Note Pads – More than just a note-taking app, BasKet lets you organize in track data in several different ways, import information from other apps, and easily share your notes with others. Freemind – This free mind mapping app can easily handle maps with as many as 22,000 nodes. Task Coach – A robust todo list tracker. Xchat – An IRC chat client for Linux and WIndow.

Mobile Internal Acquisition Tool HTC Fuze Forensics Colby Lahaie The Senator Patrick Leahy Center for Digital Investigation Introduction Overview Many people use their cell phones to do a variety of different things, from storing word documents, using programs, playing games, using the GPS for travel, and other such things. · Retrieving contacts · Retrieving call logs · Retrieving images · Retrieving audio and video · Retrieving SMS text messages (active and deleted) · Accessing the File System · Retrieving internet history Purpose The purpose of this project is to find key aspects of the HTC Fuze that would be helpful during a forensics investigation. Preliminary Tool List 1. 2. 3. 4. 5. 6. Procedures Cellebrite Retrieving Contacts Retrieving Call Logs Retrieving Images

Related:  Computing