Tag Archives | linux forensics

Google Rapid Response (GRR ) – Remote Live Forensics For Incident Response

April 26, 2016 | 13,019 views

GRR Rapid Response is an incident response framework focused on remote live forensics. It based on client server architecture, so there’s an agent which is installed on target systems and a Python server infrastructure that can manage and communicate with the agents. There are agents for Windows, Linux and Mac OS X environments. Overview To […]

Share181

Tweet10

+110

Share331

Shares 532

Tags: Forensics, linux forensics, live forensics, live forensics framework, Python, remote forensics, remote live forensics, ubuntu forensics

Posted in: Countermeasures, Forensics, Security Software | Add a Comment

Rekall – Memory Forensic Framework

November 24, 2015 | 2,480 views

Rekall is a memory forensic framework that provides an end-to-end solution to incident responders and forensic analysts. From state of the art acquisition tools, to the most advanced open source memory analysis framework. It strives to be a complete end-to-end memory forensic framework, encapsulating acquisition, analysis, and reporting. In particular Rekall is the only memory […]

Share48

+15

Share78

Shares 131

Tags: cross platform memory analysis, Forensics, linux forensics, memory analysis, memory forensic framework, memory forensics, osx forensics, Python, rekall, windows forensics

Posted in: Forensics | Add a Comment

LiME – Linux Memory Extractor

October 6, 2015 | 2,489 views

LiMe is a Loadable Kernel Module (LKM) Linux memory extractor which allows for volatile memory acquisition from Linux and Linux-based devices, such as Android. This makes LiME unique as it is the first tool that allows for full memory captures on Android devices. It also minimizes its interaction between user and kernel space processes during […]

Share80

+13

Share134

Shares 217

Tags: android forensics, android memory dump, android memory extractor, android memory security, android security, lime, linux forensics, linux memory extractor

Posted in: Forensics, Hacking Tools | Add a Comment

CAINE (Computer Aided INvestigative Environment) – Digital Forensics LiveCD

October 14, 2011 | 15,016 views

CAINE (Computer Aided INvestigative Environment) is an Italian GNU/Linux live distribution created as a project of Digital Forensics. CAINE offers a complete forensic environment that is organized to integrate existing software tools as software modules and to provide a friendly graphical interface. The main design objectives that CAINE aims to guarantee are the following: an […]

Shares 78

Tags: caine, computer-forensics, digital forensics livecd, digital-forensics, forensics livecd, hacking-livecd, linux forensics, linux forensics livecd, livecd, mounter, rbfstab, security-livecd

Posted in: Forensics, Hacking Tools, Linux Hacking | Add a Comment

REMnux: A Linux Distribution For Reverse-Engineering Malware

July 9, 2010 | 10,973 views

REMnux is a lightweight Linux distribution for assisting malware analysts in reverse-engineering malicious software. The distribution is based on Ubuntu and is maintained by Lenny Zeltser. REMnux is designed for running services that are useful to emulate within an isolated laboratory environment when performing behavioral malware analysis. As part of this process, the analyst typically […]

Share3

Tweet19

Shares 22

Tags: foreniscs, linux forensics, linux forensics distribution, malware analysis, remnux, reverse engineering malware, reverse-engineering, ubuntu

Posted in: Forensics, Malware | Add a Comment