Difference between revisions of "Online resources"

From ForensicsWiki
Jump to: navigation, search
(Added HoneyNet project)
m
 
(One intermediate revision by one other user not shown)
Line 7: Line 7:
 
* [http://whois-search.com/ WHOIS-Search.com]
 
* [http://whois-search.com/ WHOIS-Search.com]
  
== Sample Cases ==
+
The SamSpade web site also offers several WHOIS related searches
  
One of the most difficult things for new investigators is finding sample cases to work on.  
+
* [http://www.samspade.org/ Sam Spade]
  
* The [http://honeynet.org/ HoneyNet Project] has several [http://honeynet.org/misc/chall.html forensics challenges] online. These include the "Scan of Month", "The Reverse Challenge," and "The Forensic Challenge." The last one asked entrants to examine a complete RedHat Linux system for information. All of these challenges include complete solutions.
 
  
 
== Web Page Archives ==
 
== Web Page Archives ==

Latest revision as of 14:08, 26 May 2013

There are lots of web sites that can provide valuable information for forensic investigators. (This page will probably be broken into categories eventually...)

WHOIS Queries

The WHOIS Service can be used to find the owner of a domain. Sometimes this is only sufficient to find the registrar for a domain, but even that is a start.

The SamSpade web site also offers several WHOIS related searches


Web Page Archives

Web page archives can give the investigator a look at what a web page used to look like. The most well known is the Google cache, but here are some others: