Educause Security Discussion mailing list archives

Re: Forensics Tools

From: Alex Waitkus <awaitkus () GSU EDU>
Date: Tue, 23 Sep 2014 16:02:24 +0000

+1 for the SIFT Workstation


————

Alex Waitkus 

Security Analyst, Lead 
Information Security Services 
Georgia State University 
awaitkus () gsu edu
security () gsu edu
Phone 404.413.4377
Security 404.413.4524
http://technology.gsu.edu/technology-services/it-services/security/

On Sep 23, 2014, at 11:35 AM, Shawn Merdinger <shawnmer () GMAIL COM> wrote:

Hi Thomas,

On 9/23/14, Thomas Carter <tcarter () austincollege edu> wrote:

I'm looking for good forensics tools for dealing with an individual's
laptop. Specifically looking for changes /deletions /etc.


Might consider taking a look at the SANS' SIFT and some of the helpful
cheatsheets.

http://digital-forensics.sans.org/community/downloads
http://digital-forensics.sans.org/community/cheat-sheets

Cheers,
--scm

Attachment: signature.asc
Description: Message signed with OpenPGP using GPGMail

Current thread:

Forensics Tools Thomas Carter (Sep 23)
- FW: Forensics Tools Thomas Carter (Sep 23)
- Re: Forensics Tools Shawn Merdinger (Sep 23)
  - Re: Forensics Tools Alex Waitkus (Sep 23)
- Re: Forensics Tools Kevin Wilcox (Sep 23)
- Re: Forensics Tools Juan Hernández Serrano (Sep 23)
  - Re: Forensics Tools Bradley, Stephen (Sep 23)
  - Re: Forensics Tools Kevin Wilcox (Sep 23)
- Re: Forensics Tools Daniels, Shane R (Sep 23)
  - Re: Forensics Tools Ward, Michael (Sep 24)