PDA

View Full Version : Computer forensics software



wolfen69
April 25th, 2009, 07:29 PM
i have just been hired to analyze a computer for information. i have downloaded 3 live cd's (SMART, DEFT, and Backtrack). does anyone here have any experience in this endeavor and/or recommendations? i prefer to use a gui based distro, but can and will use the cli if needed.

Old_Grey_Wolf
April 25th, 2009, 07:45 PM
You may want to look at Sleuth Kit and Autopsy. http://www.sleuthkit.org/

wolfen69
April 25th, 2009, 07:58 PM
it seems Backtrack comes with Sleuthkit and Autopsy. so i guess i'll just try that and the other ones for now. thanks for the response.

geekswithguns
April 25th, 2009, 08:07 PM
There's also SPADA: http://www.spada-cd.info/about.htm

Haven't used it myself...

pwnst*r
April 25th, 2009, 08:18 PM
i have just been hired to analyze a computer for information. i have downloaded 3 live cd's (SMART, DEFT, and Backtrack). does anyone here have any experience in this endeavor and/or recommendations? i prefer to use a gui based distro, but can and will use the cli if needed.

sounds odd that someone would hire you for what seems like you're completely new to

Old_Grey_Wolf
April 25th, 2009, 08:22 PM
it seems Backtrack comes with Sleuthkit and Autopsy. so i guess i'll just try that and the other ones for now. thanks for the response.

I eventually found the list of tools that Backtrack has. Very interesting, downloading it now. :)

NimalNet
March 24th, 2013, 12:46 AM
What kind of job is it?
If you just need to analyse (L)ubuntu will be just fine > Sleuthkit

If you need to do Forensics I recommend Deft 7.2
Works great, you could use the live dvd to make an image and then return to (L)ubuntu

coffeecat
March 24th, 2013, 01:06 PM
Back to sleep, old thread.