background preloader

Open source digital forensics.

Open source digital forensics.
Related:  Tools: Security - Forensics - Pentesting - Ethical Hacking

SIFT Kit/Workstation: Investigative Forensic Toolkit Download SANS Investigative Forensic Toolkit (SIFT) Workstation Version 3.0 Download SIFT Workstation VMware Appliance Now - 1.5 GB Having trouble downloading? If you are having trouble downloading the SIFT Kit please contact sift-support@sans.org and include the URL you were given, your IP address, browser type, and if you are using a proxy of any kind. Having trouble with SIFT 3? If you are experiencing errors in SIFT 3 itself, please submit errors, bugs, and recommended updates here: How To: Download Ubuntu 14.04 ISO file and install Ubuntu 14.04 on any system. -> Once installed, open a terminal and run "wget --quiet -O - | sudo bash -s -- -i -s -y" Congrats -- you now have a SIFT workstation!! SIFT Workstation 3.0 Overview "The SIFT Workstation has quickly become my "go to" tool when conducting an exam. Key new features of SIFT 3.0 include: Installation

Black Hat USA 2014 - Arsenal Returning bigger than ever for 2014, Black Hat is pleased to once again present Arsenal--a Tool/Demo area where independent researchers and the open source community will showcase some awesome weapons. See below for the full list and descriptions of each of these tools. Hours and Location: August 6, 2014 | 10:00 - 18:00 | Breakers JK August 7, 2014 | 10:00 - 18:00 | Breakers JK Android Device Testing Framework The Android Device Testing Framework ("dtf") is a data collection and analysis framework to help individuals answer the question: "Where are the vulnerabilities on this mobile device?" Automated Memory Analysis Automated Memory Analysis is a set of new innovative Cuckoo Sandbox plugins that adds new dynamic and memory analysis abilities such as: Demonstrations will cover how the plugins can help security researchers analyze advanced malware. Malware samples such as Snake (Uroburos), Stuxnet, and friends that evaded analysis will be dissected live to demonstrate the toolkit abilities.

Hardware-based security more effective against new threats With software security tools and network vulnerabilities constantly being targeted by hackers, securing hardware components will grow in importance given it is more secure and cybercriminals will find it difficult to alter the physical layer for their purposes. Patrick Moorhead, president and principal analyst of Moor Insight and Strategy, said hardware-based security is more secure than software tools such as antivirus since it cannot be altered. Hardware-based security refers to safeguarding the computer using components such as processors. An RSA spokesperson added the physical layer eliminates the possibility of malware, such as virtual rootkits, from infiltrating the operating system and penetrating the virtualization layer. In 2010, RSA, together with VMWare and Intel, introduced a proof-of-concept framework to integrate security into the entire hardware stack. One example is ARM's joint venture with Gemalto and Giesecke & Devrient to set up Trustonic in December 2012.

SecLists.Org Security Mailing List Archive Probably the Best Free Security List in the World. Security List Index Select a Security Category: All Items Keys Discontinued or not updated recently (for at least three years). Item links to a Gizmo's Freeware 'Best Free' page. Item or this icon links to a Gizmo's Freeware page. Web application. Browsers: FF = Firefox; Ch = Chrome; IE = Internet Explorer; OB = Other browsers; AB = All browsers. About This list (earlier "Probably the Best Free Security List in the World") contains thousands of links to free security-related Windows desktop applications and web applications, with the goal of listing everything available that's not malicious or of low usefulness. Use the Windows desktop applications or web applications on this list at your discretion. We periodically check all links on this list with Web of Trust. Use the comments section below, or this (or this) forum thread, to let us know about issues, or suggestions for items that could be added to the list. Related Links Editor This list is maintained by volunteer editor ako (Antti Koponen)

8 Good Password Cracking Tools For You. 1.RainbowCrack RainbowCrack is a general propose implementation of Philippe Oechslin's faster time-memory trade-off technique. It crack hashes with rainbow tables. RainbowCrack uses time-memory tradeoff algorithm to crack hashes. 2.NTAccess NTAccess can replace the administrator password of a Windows NT, Windows 2000, Windows XP, Windows Server 2003 or Windows Vista 32-Bit system by rebooting the computer with a special set of boot disks. 3.NetBIOS Auditing Tool The intention of this package is to perform various security checks on remote servers running NetBIOS file sharing services. 4.Proactive System Password Recovery Proactive System Password Recovery (PSPR; formerly known as Advanced Windows Password Recovery) is a program to recover most types of Windows passwords. 5.Proactive Password Auditor Proactive Password Auditor helps network administrators to examine the security of their networks by executing an audit of account passwords. 6.Password Safe 7.Pandora 8.ophcrack

Dispositivos Android como herramientas para test de penetración. Via @DragonJAR Conozco personas que prefieren no salir, a salir sin su teléfono móvil, lo cierto es que cada vez son mas los conocidos que toman ese tipo de decisiones y no se si es por el entorno en que me muevo y lo “geeks” de mis conocidos o realmente es un indicador de lo dependientes que nos hemos vuelto de estos dispositivos. La verdad es que se han convertido en parte importante de nuestra vida cotidiana, desde ellos hacemos todo tipo de actividades, recreativas, académicas y cada vez mas… laborales. Era de esperarse que empezaran proliferar las herramientas que nos permitieran trabajar desde equipos móviles, la capacidad de computo en ellos ha aumentado rápidamente los últimos años, superando incluso algunas configuraciones de equipos portátiles, son pequeños, fáciles de transportar y siempre los tenemos a la mano para reaccionar frente a cualquier incidente rápidamente. Android Network Toolkit – zAnti Pagina Oficial – Enlace del APK dSploit – Android Network Penetration Suite Connect Cat Nessus

21 Popular Computer Forensics Tools Computer forensics is a very important branch of computer science in relation to computer and Internet related crimes. Earlier, computers were only used to produce data but now it has expanded to all devices related to digital data. The goal of Computer forensics is to perform crime investigations by using evidence from digital data to find who was the responsible for that particular crime. For better research and investigation, developers have created many computer forensics tools. Police departments and investigation agencies select the tools based on various factors including budget and available experts on the team. These computer forensics tools can also be classified into various categories: Disk and data capture toolsFile viewersFile analysis toolsRegistry analysis toolsInternet analysis toolsEmail analysis toolsMobile devices analysis toolsMac OS analysis toolsNetwork forensics toolsDatabase forensics tools 1. Download: 2. 4. 5. 6. 7. 8. 9. 10. 11.

Free Computer Tools for Disk Forensics. In the first article in this series we looked at free tools for data mirroring, and in the second installment we looked at tools available for registry forensics. Now we will move on to tools for disk forensics, which is the process of acquiring and analyzing the data stored on physical storage media. Disk forensics includes the recovery of hidden and deleted data and also file identification, the process of identifying who created a file or message. Tool: ADS Locator The ADS Locator can be used to find files that have alternate ADS streams attached. Tool: Disk Investigator Disk Investigator helps you to discover all that is hidden on your computer hard disk. It helps to view and search raw directories, files, clusters, and system sectors. Tool: Recuva Recuva is a free file recovery program that is capable of recovering lost or deleted files from local drives and external drives. Tool: Encrypted Disk Detector Tool: Passware Encryption Analyzer Related Articles: Resources:

Digital Intelligence and Investigation Tools | The CERT Division By providing operational support to high-profile intrusion, identity theft, and general computer crime investigations, DIID is able to see the current limitations of computer forensics and incident response in the field first hand. Combining applied research with the unique talents, operational experience, research capabilities, and the vast knowledge base of Carnegie Mellon University, we have developed resources, training, and tools to facilitate forensic examinations and assist authorized members of the law enforcement community. Restricted Access Tools Users can access the following tools after they register and are vetted. Live View LE allows forensic investigators to take a physical device or an image file of a disk or partition and automatically transform it into a virtual machine. CCFinder is a suite of utilities designed to facilitate the discovery, organization, and query of financial data and related personally identifiable information in large-scale investigations.

Metashield Analyser. Analisis of metadata online.

Related: