|
Interesting Tools
Bart’s Preinstalled Environment (BartPE) bootable live Windows CD/DVD.
BitPim - BitPim is a program that allows you to view and manipulate data on many CDMA phones from LG, Samsung, Sanyo and other manufacturers. This includes the PhoneBook, Calendar, WallPapers, RingTones (functionality varies by phone) and the Filesystem for most Qualcomm CDMA chipset based phones.
Cache View - Cache View is a viewer for the Netscape Navigator, Mozilla and Firefox, Opera, and Internet Explorer web caches.
Explore2fs - Explore2fs is a GUI explorer tool for accessing ext2 and ext3 filesystems. It runs under all versions of Windows and can read almost any ext2 and ext3 filesystems.
Ext2 Installable File System for Windows - It provides Windows NT4.0/2000/XP/2003 with full access to Linux Ext2 volumes (read access and write access). This may be useful if you have installed both Windows and Linux as a dual boot environment on your computer.
Forensic Acquistion Tools
Helix - Helix is a customized distribution of the Knoppix Live Linux CD. Helix has been modified very carefully to NOT touch the host computer in any way and it is forensically sound. Helix wil not auto mount swap space, or auto mount any attached devices. Helix also has a special Windows autorun side for Incident Response and Forensics.
LS - File List Generator
Mandiant Web Historian
NavRoad - NavRoad HTML Viewer is a small, fast, powerful off-line HTML browser designed for viewing HTML and web image files (GIF, JPG, PNG, BMP) anytime, anywhere.
Process Monitor - Process Monitor is an advanced monitoring tool for Windows that shows real-time file system, Registry and process/thread activity. It combines the features of two legacy Sysinternals utilities, Filemon and Regmon, and adds an extensive list of enhancements including rich and non-destructive filtering, comprehensive event properties such session IDs and user names, reliable process information, full thread stacks with integrated symbol support for each operation, simultaneous logging to a file, and much more.
Ubuntu Linux Boot CD
XnView - software to view and convert graphic files. Support for more than 400 graphics formats. Versions exist for Windows, Mac OS X, Linux and more.
ZoomIt - ZoomIt is a screen zoom and annotation tool for technical presentations that include application demonstrations. ZoomIt runs unobtrusively in the tray and activates with customizable hotkeys to zoom in on an area of the screen, move around while zoomed, and draw on the zoomed image. Also includes a full screen break timer.
|
