SANS Investigative Forensic Toolkit Workstation: v2.0 Released
Page 1 of 1
SANS Investigative Forensic Toolkit Workstation: v2.0 Released
The SANS SIFT Workstation is a VMware Appliance that is pre-configured with all the necessary tools to perform a detailed digital forensic examination. It is compatible with Expert Witness Format (E01), Advanced Forensic Format (AFF), and raw (dd) evidence formats. The brand new version has been completely rebuilt on an Ubuntu base with many additional tools and capabilities that can match any modern forensic tool suite.
File system support
Windows (MSDOS, FAT, VFAT, NTFS)
MAC (HFS)
Solaris (UFS)
Linux (EXT2/3)
Software Includes:
The Sleuth Kit (File system Analysis Tools)
log2timeline (Timeline Generation Tool)
ssdeep & md5deep (Hashing Tools)
Foremost/Scalpel (File Carving)
WireShark (Network Forensics)
Vinetto (thumbs.db examination)
Pasco (IE Web History examination)
Rifiuti (Recycle Bin examination)
Volatility Framework (Memory Analysis)
DFLabs PTK (GUI Front-End for Sleuthkit)
Autopsy (GUI Front-End for Sleuthkit)
PyFLAG (GUI Log/Disk Examination)
More info and Download: http://computer-forensics2.sans.org
andry- Moderator
- Posts : 467
Join date : 2010-05-07
Similar topics
» Forensic Toolkit (FTK) Version 3
» NST Network Security Toolkit 1.8.1 released
» IE8 Blocker Toolkit Available
» Network Security Toolkit (NST v2.13.0)
» Mantra Security Toolkit v0.01
» NST Network Security Toolkit 1.8.1 released
» IE8 Blocker Toolkit Available
» Network Security Toolkit (NST v2.13.0)
» Mantra Security Toolkit v0.01
Page 1 of 1
Permissions in this forum:
You cannot reply to topics in this forum
|
|