Get flash to fully experience Pearltrees
CAINE LiveUSB guide
Download FCCU GNU/Linux Forensic Boot CD 12.1 for Linux - FCCU GNU/Linux Forensic Bootable CD is a bootable CD based on KNOPPIXFCCU GNU/Linux Forensic Bootable CD is a bootable CD based on KNOPPIX that contains a lot of tools suitable for computer forensic investigatins, including bash scripts.
Due to the recent rounds of troubleshooting, the posts lately haven’t been the meaty material I’ve been setting aside. I’ve got a massive “new & improved” round-up linkfest bursting at the seams.
Although analyzing information provided in a system’s memory is not a new trick, the tools that help us automate these tasks are still new. The three products that I am currently using to help me with memory analysis are Volatility (Vol), Mandiant’s Audit Viewer (MAV), HBGary’s Responder Field Edition (RFE). These tools are very helpful and provide a wealth of system information that can help an analyst understand what is happening on a system without using tools that could be circumvented through techniques such as kernel hooking.
MySQL is a widely spread SQL database management system mainly used on LAMP (Linux/Apache/MySQL/PHP) projects. In order to be able to use a database, one needs to create: a new database, give access permission to the database server to a database user and finally grant all right to that specific database to this user. This tutorial will explain how to create a new database and give a user the appropriate grant permissions.
The physical memory of computers can be imaged and analyzed using a variety of tools.
The Forum of Incident Response and Security Teams (FIRST) is going to held its annual conference from June 28 to July 3, 2009 in Kyoto, Japan. Registration is now open to the interested public.
Several people requested an update of PTFinder for the Microsoft Windows Vista platform. The changes to support kernel version 6.0.6000.16386 were not trivial. I've added a BETA version to the PTFinder Collection .
Recently, there was a post on the SANS Forensics blog about memory collection and analysis tools , but for some reason, it seems that folks are STILL having trouble with this process; I'm seeing posts in forums (forii??)
Non-profit organizations that are performing public domain research can use the service at 30 cents (USD $0.30) per timestamp. DigiStamp's founders are scientists themselves. Volume users of the service
Trusted timestamping is the process of securely keeping track of the creation and modification time of a document.
Printer friendly ShareThis The College of Southern Maryland forensics team is presented with the Annual Digital Forensics Competition first place award by Johns Hopkins University Director of Technology Programs John Baker, Sr., far right.
REMnux is a lightweight Linux distribution for assisting malware analysts in reverse-engineering malicious software. The distribution is based on Ubuntu and is maintained by Lenny Zeltser. About REMnux
Ok, I have accidently deleted one of my VMDK files, but I am left with my flat.VMDK file.