Data analysis suites
Name |
From |
Description |
---|---|---|
Autopsy | Brian Carrier | Graphical interface to the command line digital investigation analysis tools in The Sleuth Kit (see below) |
Backtrack | Backtrack | Penetration testing and security audit with forensic boot capability |
Caine | Nanni Bassetti | Linux based live CD, featuring a number of analysis tools |
Deft | Dr. Stefano Fratepietro and others | Linux based live CD, featuring a number of analysis tools |
Digital Forensics Framework | ArxSys | Analyses volumes, file systems, user and applications data, extracting metadata, deleted and hidden items |
Forensic Scanner | Harlan Carvey | Automates ‘repetitive tasks of data collection’. Fuller description here |
Paladin* | Sumuri | Ubuntu based live boot CD for imaging and analysis |
SIFT* | SANS | VMware Appliance pre-configured with multiple tools allowing digital forensic examinations |
The Sleuth Kit | Brian Carrier | Collection of UNIX-based command line file and volume system forensic analysis tools |
Ubuntu guide | How-To Geek | Guide to using an Unbuntu live disk to recover partitions, carve files, etc. |
Volatility Framework | Volatile Systems | Collection of tools for the extraction of artefacts from RAM |