PDA

View Full Version : FORENSICS TOOLS and DISTROS



h3xc0deR
02-29-2012, 05:58 PM
HELIX:

http://www.filecluster.com/download-link-1/78707.html

CAINE:

http://www.caine-live.net/Downloads/caine2.5.1.iso

SANS SIFT Workstation 2.12:
SANS SIFT Kit/Workstation: Investigative Forensic Toolkit Download (http://computer-forensics.sans.org/community/downloads#locations)

prince_indishell
01-23-2013, 04:52 PM
can u please tell which tool is used for which purpose ?

sagar525
05-14-2013, 04:41 PM
I have personally used Helix and it works nice. Its a live CD which boots in write-protect mode and does help in acquiring the evidence and also perform other functions like hashing etc. Winhex is another very useful tool and is quite feature rich. It has a nice feature of 'RAM Dump' which allows you to search for keywords in live RAM Memory. Backtrack also has good forensic capabilities that could be leveraged to perform basic forensics.