Helix is a forensics and incident response Live CD based on the Knoppix distribution. Helix Computer CaseHelix3 is a live CD for doing computer forensic investigation and incident response. It is built on top of Ubuntu and comes in both free and commercial forms. This article will cover working with the free Helix Live CD. You can download the live CD from: I am currently using Helix 2009R1 for the demonstration. Here is the list of tools that we will be covering as a part of our forensic investigation and incident response: • Adepto • GtkHash • Xfprot • Retriever • VirusScanner Adepto One of the first steps when we do an incident response is to secure the hard disks/storage to bring it back to the lab for investigation. Combat mission barbarossa to berlin game. We never do our investigation on the original copy, so it is advisable to make a bit-by-bit copy of the image that has to be analyzed.
0 Comments
Leave a Reply. |
Details
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |