http://www.forensicswiki.org/w/index.php?title=Knoppix_STD&feed=atom&action=history 2013-05-24T23:54:41Z Revision history for this page on the wiki MediaWiki 1.20.3 http://www.forensicswiki.org/w/index.php?title=Knoppix_STD&diff=7356&oldid=prev 2012-07-28T10:24:13Z

<p></p> <table class='diff diff-contentalign-left'> <col class='diff-marker' /> <col class='diff-content' /> <col class='diff-marker' /> <col class='diff-content' /> <tr style='vertical-align: top;'> <td colspan='2' style="background-color: white; color:black;">← Older revision</td> <td colspan='2' style="background-color: white; color:black;">Revision as of 10:24, 28 July 2012</td> </tr><tr><td colspan="2" class="diff-lineno">Line 1:</td> <td colspan="2" class="diff-lineno">Line 1:</td></tr> <tr><td colspan="2">&#160;</td><td class='diff-marker'>+</td><td style="background: #cfc; color:black; font-size: smaller;"><div><ins style="color: red; font-weight: bold; text-decoration: none;">{{Deprecated Software}}</ins></div></td></tr> <tr><td colspan="2">&#160;</td><td class='diff-marker'>+</td><td style="background: #cfc; color:black; font-size: smaller;"><div><ins style="color: red; font-weight: bold; text-decoration: none;"></ins></div></td></tr> <tr><td class='diff-marker'>&#160;</td><td style="background: #eee; color:black; font-size: smaller;"><div>{{Infobox_Software |</div></td><td class='diff-marker'>&#160;</td><td style="background: #eee; color:black; font-size: smaller;"><div>{{Infobox_Software |</div></td></tr> <tr><td class='diff-marker'>&#160;</td><td style="background: #eee; color:black; font-size: smaller;"><div>&#160;&#160; name = Knoppix STD |</div></td><td class='diff-marker'>&#160;</td><td style="background: #eee; color:black; font-size: smaller;"><div>&#160;&#160; name = Knoppix STD |</div></td></tr> <tr><td class='diff-marker'>−</td><td style="background: #ffa; color:black; font-size: smaller;"><div>&#160;&#160; maintainer =&#160; |</div></td><td class='diff-marker'>+</td><td style="background: #cfc; color:black; font-size: smaller;"><div>&#160;&#160; maintainer = <ins class="diffchange diffchange-inline">[[STD project]] </ins> |</div></td></tr> <tr><td class='diff-marker'>−</td><td style="background: #ffa; color:black; font-size: smaller;"><div>&#160;&#160; os = <del class="diffchange diffchange-inline"> </del>|</div></td><td class='diff-marker'>+</td><td style="background: #cfc; color:black; font-size: smaller;"><div>&#160;&#160; os = <ins class="diffchange diffchange-inline">[[Linux]] </ins>|</div></td></tr> <tr><td class='diff-marker'>&#160;</td><td style="background: #eee; color:black; font-size: smaller;"><div>&#160;&#160; genre = {{Live CD}} |</div></td><td class='diff-marker'>&#160;</td><td style="background: #eee; color:black; font-size: smaller;"><div>&#160;&#160; genre = {{Live CD}} |</div></td></tr> <tr><td class='diff-marker'>&#160;</td><td style="background: #eee; color:black; font-size: smaller;"><div>&#160;&#160; license = {{GPL}} |</div></td><td class='diff-marker'>&#160;</td><td style="background: #eee; color:black; font-size: smaller;"><div>&#160;&#160; license = {{GPL}} |</div></td></tr> </table>

Joachim Metz http://www.forensicswiki.org/w/index.php?title=Knoppix_STD&diff=7355&oldid=prev 2007-08-04T10:53:03Z

<p></p> <table class='diff diff-contentalign-left'> <col class='diff-marker' /> <col class='diff-content' /> <col class='diff-marker' /> <col class='diff-content' /> <tr style='vertical-align: top;'> <td colspan='2' style="background-color: white; color:black;">← Older revision</td> <td colspan='2' style="background-color: white; color:black;">Revision as of 10:53, 4 August 2007</td> </tr><tr><td colspan="2" class="diff-lineno">Line 8:</td> <td colspan="2" class="diff-lineno">Line 8:</td></tr> <tr><td class='diff-marker'>&#160;</td><td style="background: #eee; color:black; font-size: smaller;"><div>}}</div></td><td class='diff-marker'>&#160;</td><td style="background: #eee; color:black; font-size: smaller;"><div>}}</div></td></tr> <tr><td class='diff-marker'>&#160;</td><td style="background: #eee; color:black; font-size: smaller;"></td><td class='diff-marker'>&#160;</td><td style="background: #eee; color:black; font-size: smaller;"></td></tr> <tr><td class='diff-marker'>−</td><td style="background: #ffa; color:black; font-size: smaller;"><div>Knoppix STD is a [[<del class="diffchange diffchange-inline">Computer Forensics|</del>computer forensics]] / [[Incident Response|incident response]] [[<del class="diffchange diffchange-inline">live </del>CD]] based on Knoppix.</div></td><td class='diff-marker'>+</td><td style="background: #cfc; color:black; font-size: smaller;"><div>Knoppix STD is a [[computer forensics]] / [[Incident Response|incident response]] [[<ins class="diffchange diffchange-inline">Live </ins>CD]] based on Knoppix.</div></td></tr> <tr><td class='diff-marker'>&#160;</td><td style="background: #eee; color:black; font-size: smaller;"></td><td class='diff-marker'>&#160;</td><td style="background: #eee; color:black; font-size: smaller;"></td></tr> <tr><td class='diff-marker'>&#160;</td><td style="background: #eee; color:black; font-size: smaller;"><div>== Tools ==</div></td><td class='diff-marker'>&#160;</td><td style="background: #eee; color:black; font-size: smaller;"><div>== Tools ==</div></td></tr> </table>

Fsck http://www.forensicswiki.org/w/index.php?title=Knoppix_STD&diff=7354&oldid=prev 2007-08-04T10:50:09Z

<p>New page: {{Infobox_Software | name = Knoppix STD | maintainer = | os = | genre = {{Live CD}} | license = {{GPL}} | website = [http://s-t-d.org/ s-t-d.org/] | }} Knoppix STD is a [[Co...</p> <p><b>New page</b></p><div>{{Infobox_Software |<br /> name = Knoppix STD |<br /> maintainer = |<br /> os = |<br /> genre = {{Live CD}} |<br /> license = {{GPL}} |<br /> website = [http://s-t-d.org/ s-t-d.org/] |<br /> }}<br /> <br /> Knoppix STD is a [[Computer Forensics|computer forensics]] / [[Incident Response|incident response]] [[live CD]] based on Knoppix.<br /> <br /> == Tools ==<br /> <br /> === Forensics ===<br /> <br /> * [[Sleuthkit]] 1.66 : extensions to The Coroner's Toolkit forensic toolbox.<br /> * autopsy 1.75 : Web front-end to TASK. Evidence Locker defaults to /mnt/evidence<br /> * biew : binary viewer<br /> * bsed : binary stream editor<br /> * consh : logged shell (from F.I.R.E.)<br /> * coreography : analyze core files<br /> * dcfldd : US DoD Computer Forensics Lab version of dd<br /> * fenris : code debugging, tracing, decompiling, reverse engineering tool<br /> * fatback : Undelete FAT files<br /> * foremost : recover specific file types from disk images (like all JPG files)<br /> * ftimes : system baseline tool (be proactive)<br /> * galleta : recover Internet Explorer cookies<br /> * hashdig : dig through hash databases<br /> * hdb : java decompiler<br /> * mac-robber : TCT's graverobber written in C<br /> * [[md5deep]] : run md5 against multiple files/directories<br /> * memfetch : force a memory dump<br /> * pasco : browse IE index.dat<br /> * photorec : grab files from digital cameras<br /> * readdbx : convert Outlook Express .dbx files to mbox format<br /> * readoe : convert entire Outlook Express .directory to mbox format<br /> * rifiuti : browse Windows Recycle Bin INFO2 files<br /> * secure_delete : securely delete files, swap, memory....<br /> * testdisk : test and recover lost partitions<br /> * wipe : wipe a partition securely. good for prep'ing a partition for dd<br /> * and other typical system tools used for forensics (dd, lsof, strings, grep, etc.)<br /> <br /> == External Links ==<br /> <br /> * [http://s-t-d.org/ Official Site]<br /> * [http://forum.s-t-d.org/ Support Forum]<br /> <br /> [[Category:Incident response tools]]</div>

Fsck