Binary Revolution Radio - 149 - Digital Forensics

Sign in to follow this  
Followers 0

About This File

tehbizz has been writing a few articles check out <a href="">561 binrev meeting site</a>, if you want to start your own binrev meeting email 411 -at- binrevmeetings /dot/ com, <a href="">HackTV</a> is now it's own separate site/domain, check out <a href=""></a>, the HackTV link on the main page is now forwarding properly, also check out the <a href="">DDP Blawg(Blog)</a>, Email about <a href="">DBAN</a> when a file is deleted the pointer is just deleted not the file, the file is only really "deleted" when it is rewritten to, <a href="">EnCase</a> is the industry for forensic recovery and it is very hardware intensive, common standards for wiping a drive are 3 pass 7 pass and 35 pass, EnCase is not the end all be all as people believe it is a huge program that supports almost every file system known to man as well as a scriptable api based on java and C++, <a href="">TCT</a> is an open source solution for forensic recovery it was the first competitor to EnCase, <a href="">The Sleuth Kit</a> is based on TCT, autopsy is it's front end, the first step in a forensic investigation is to make a forensic image of the hard drive, a write blocker is used to ensure data integrity, Encase includes Fastblock SE, <a href="">FIRE</a> is a linux live cd for forensics, <a href="">Helix</a> is another security live cd with a windows partition on the disk for live data analysis, incinerating the drive is the best way to make sure data on a drive is not recoverable, <a href="">shred</a> is another tool that is found in most linux distribution and is for file deletion but has limitation, <a href="">THC secure delete</a> another tool for secure deletion of files.


User Feedback

There are no comments to display.

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now