Computer Disk Forensic/Evidence/Recovery Software CD

Description: cs2025 Forensic Software and Recovery Software for UNIX, Linux, Windows, and Mac OS X This product includes a number of different software packages for forensic examination of computer data. The packages are, in most cases distributed as compressed archives, and the user is expected to be prepared to expand these archives using the programs that are appropriate, and to follow the installation procedures. A few distributions are in the form of ISO CD images, which should be used to create bootable recovery CD's. The CD includes the following: FORENSIC SOFTWARE August 2010 TULP2G - A .NET based forensic software framework for extracting and decoding data stored in electronic devices. Suitable for Windows 2000 and Windows XP Distributed under the BSD License. Sleuth - The Sleuth Kit is a C++ library and collection of open source file system forensics tools that allow you to, among other things, view allocated and deleted data from NTFS, FAT, FFS, EXT2, Ext3, HFS+, and ISO9660 images. The Autopsy Forensic Browser provides a graphical interface to The Sleuth Kit. IBM Public License. Runs under all Linux/UNIX/BSD Platforms, including Mac OS X. Autopsy Forensics Browser - A graphical interface to The Sleuth Kit Autopsy allows one to view allocated and deleted file system content in a "File Manager" style interface and perform keyword searches. Distributed pursuant to the GNU General Public License. Runs on all Linux/UNIX/BSD Platforms, including Mac OS X. ODESSA - The Open Digital Evidence Search and Seizure Architecture is a cross-platform framework for performing Computer Forensics and Incident Response. GNU General Public License. For all 32-bit Microsoft Windows (95/98/NT/2000/XP), and all Linux/BSD/UNIX systems, including Mac OS X Foremost - A linux tool for conducting forensic examinations. Although developed for law enforcement purposes, it is also useful in other contexts. Foremost extracts information from a file such as a dd image file of a disk partition. Foremost is in the Public Domain. Runs on any Linux/BSD/UNIX type system. PLAC - Portable Linux Auditing CD - A bootable cdrom running linux. It has network auditing, disk recovery, and forensic analysis tools. ISO image. GNU General Public License. For all Linux/BSD/UNIX type operating systems. AIR - Automated Image and Restore - A GUI front-end to dd/dcfldd, designed to facilitate creation of forensic bit images. It supports verification via MD5/SHA1, SCSI tape drives, acquisition over a TCP/IP connection, splitting of images, and detailed session logging. AIR is capable of auto-detection of IDE and SCSI drives, CD-ROMs, and tape drives. It has many operational options. mac-robber - A digital forensics and incident response tool. It can be used with the Sleuth Kit to create a timeline of file activity for mounted file systems. GNU General Public License. For all Linux/BSD/UNIX type systems, including Mac OS X. LiveView - A forensics tool that creates a VMware virtual machine out of a raw (dd-style) disk image. This allows an examiner to "boot up" the image and gain an interactive, user-level perspective of the environment, all without modifying the image. LiveView is written in Java (Swing) and runs on 32-bit Windows systems. It is distributed under the terms of the GNU General Public License. NetworkMiner - A Network Forensic Analysis Tool (NFAT) for Windows that can detect the OS, hostname and open ports of network hosts through packet sniffing or by parsing a PCAP file. NetworkMiner can also extract transmitted files from network traffic. It is written in C#.net and runs on 32-bit Windows systems. NetworkMiner is released under the GNU General Public License. dcfldd - An Enhanced version of gnu dd with features useful for forensics and security. Key features include on-the-fly hashing, status output and faster disk wiping. It is written in C and runs on all Linux/UNIX type systems. The dcfldd package is made available under the terms of the GNU General Public License. NFI Defraser - Defraser - A forensic analysis application that can be used to detect full and partial multimedia files in datastreams. It is typically used to find (and restore) complete or partial video files in datastreams (for instance, unallocated diskspace). The program is written in C#.net and runs on Windows XP, Windows Vista, and Windows 7. It is distributed under the BSD License. ptk-forensics - PTK - An alternative advanced interface for the TSK suite (The Sleuth Kit). It was developed from scratch and besides providing the functions already present in Autopsy it implements numerous new features essential during forensic activity. The package is written in JavaScript, PHP, PERL; it uses a web based user interface and requires MySQL. It is released under the terms of the PTK Free Edition License. Open Computer Forensics Architecture - OCFA - A modular computer forensics framework built by the Dutch National Police Agency. The main goal is to automate the digital forensic process to speed up the investigation and give tactical investigators direct access to the seized data through an easy to use search and browse interface. Ocfa is based on the Linux operating system; therefore a knowledge of Linux/UNIX is required. Knowledge of the SQL query language and computer forensics is helpful. OCFA is implemented in C++, Perl, and Linux Shell, and uses PostgreSQL. OCFA is released under the GNU General Public License. rdd forensic copy program - rdd is a forensic copy program developed at and used by the Netherlands Forensic Institute (NFI). Unlike most copy programs, rdd is robust with respect to read errors, which is an important property in a forensic operating environment. Rdd - A forensic copy program developed at and used by the Netherlands Forensic Institute (NFI). Unlike most copy programs, rdd is robust with respect to read errors, which is an important property in a forensic operating environment. Rdd is written in C and runs on all Linux/UNIX type systems. It is released under the BSD License. INSERT - INside SEcurity Rescue Toolkit - A multi-purpose disaster recovery and network analysis system, based on KNOPPIX. It runs from a CD. It has read-write support for NTFS-partitions. It is available under the GNU General Public License. It purports to be OS independent, but it runs with the X Window System; therefore, it is most likely to be of interest to Linux/UNIX users. LDE - Linux Disk Editor - A disk editor for linux, originally written to help recover deleted files. LDE is distributed under the GNU General Public License. It has a simple curses interface. It works well with ext2, minix, xiafs, and is somewhat useable with fat and iso9660 file systems. It is suitable for use with all UNIX/Linux type systems. ZipCracker - A program to help users recover files from password protected zip archives. It has a easy to use Gnome User interface. For Linux/UNIX. It is distributed under the GNU General Public License. e2undel - An interactive console tool that recovers the data of deleted files on an ext2 file system under Linux. It does not require any additional tools and should be useable without knowledge about ext2 interna. For all Linux/UNIX systems. Distributed under the GNU General Public License. Repairlix - A networked Linux distribution/bootable system. It has a suite of utilities for doing system recovery. For Linux/Unix systems. distributed under the GNU General Public License. Fileextractor - A tool for recovering files from a binary data source. Sources such as digital cameras, partitions, harddrives, memory sticks or floppy disks may be corrupted, deleted or formatted by mistake. Once the file system is destroyed a tool such as FileExtractor may be able to recover your files. The program is written in Python using WxWigets and runs on all 32-bit Windows systems and all Linux/UNIX/BSD systems, including OS X. Fileextractor is available under the GNU General Public License. I believe this software to be useful, but naturally, I cannot give assurances about the suitability of any package for a particular purpose.

Price: 15 USD

Location: Jerusalem

End Time: 2024-02-17T12:17:00.000Z

Shipping Cost: 0 USD