Posted: Sun Nov 20, 2011 5:02 am Post subject: Forensic tools
I came accross some forensic tools that I am thinking of downloading onto my lap top. I have read up on them some but would like to get feedback from someone who has been in the CF field longer than my (2) months. Thank you.
(hint remove the spaces as CFW don't like direct links [which is pretty annoying, mod to note])
Moderator Note: The purpose of not allowing direct links is to prevent spammers from using the forums as a way to increase their scores with search engines. It also prevents people from from posting links to sites that might harm someones computer.
Unfortunately these are open source tools by and large and are mostly designed for Linux or *nix boxes. On the plus side they are usually free (as in beer AND speech)
On the Windaz OS, FTK Imager is a decent free tool. For heavyweight forensics, X-Ways is just the best (and cheapest) tool you can find, however, you'll need a decent understanding of the underlying artefacts otherwise you won't have a clue as to what what you are looking at!
Bottom line - X-Ways is for hardcore analysts. If you want push-button forensics then go for FTK (do not confuse this with FTK Imager, which is reasonably cool). EnCase is a reasonable compromise between X-Ways and FTK.
You cannot post new topics in this forum You cannot reply to topics in this forum You cannot edit your posts in this forum You cannot delete your posts in this forum You cannot vote in polls in this forum