polewdeck.blogg.se - Download linux os iso osint faramework

Where the previous section is mostly about storage and files, this one deals with network, devices and very specific analysis: The third section contains the other type of analysis one should find in a toolbox like this. Password Recovery (Aircrack-ng, hashcat, John, Hydra, etc).

Malware Analysis (Radare2, sandboxes, and tools for Flash, Java, PDF etc).

Memory Forensics (VolDiff, RSAkeyfind, volatility including evolve, etc).

Data Recovery (files search, foremost, scalpel, undelete, etc).

Artifacts (UEFI tool, browser data, E-mails, Windows logs, registry, etc).

Not only analysis but also password recovery or brute force tools can be found here: The next set of tools is more about analysis of data in storage or files in general and recovery of data in all kinds of situations.

Timeline (from Autopsy to tools like PLASO, yarp, Timesketch, etc).

Mounting (Including Bitlocker, APFS, VSS, VeraCrypt, etc).

Imaging (several dd flavours, AFF tools, esximager, ftkimager, etc).

Directly from the neatly organised menu we first find the following topics, aimed at the workflow or general tools: Let’s first go over all the different sections there are to be found.

But to be honest, to compare DEFT with Tsurugi is like comparing apples and oranges! Tool Overview That too is a distribution aimed to assist digital investigators and especially forensic analysis. It reminds me a tiny bit of DEFT Linux, that I have used multiple times over the last couple of years. It is also a great platform to dive into crypto currency, malware, steganography or even mobile forensics! This is like a single ring to rule them all when it comes to investigating. The requirement is about 28GB and that seems quite a bit for a regular Ubuntu based distribution, but it comes packed with tools!įirst I need to explain that this distribution is NOT only for investigators who do a lot of OSINT work. I installed it in a VirtualBox on my desktop, gave it 4GB of memory and 2 cores and installed it on a 35GB drive.