Difference between pages "Helix3" and "Forensic Server Project"

From Forensics Wiki
(Difference between pages)
Jump to: navigation, search
 
 
Line 1: Line 1:
 +
{{Expand}}
 +
 
{{Infobox_Software |
 
{{Infobox_Software |
   name = Helix3 |
+
   name = Forensic Server Project |
   maintainer = [[e-fense]]|
+
   maintainer = [[Harlan Carvey]] |
   os = {{Linux}}, {{Windows}}, {{Solaris}} |
+
   os = {{Windows}} |
   genre = {{Live CD}}, {{Incident response}} |
+
   genre = {{Incident response}} |
   license = {{GPL}}, others |
+
   license = {{GPL}} |
   website = [http://www.e-fense.com/helix3-download.php e-fense.com]  
+
   website = [http://sourceforge.net/projects/windowsir/ sourceforge.net/projects/windowsir/] |
 
}}
 
}}
 
'''Helix3''' is a [[Live CD]] built on top of [[Ubuntu]]. It focuses on [[Incident Response|incident response]] and [[computer forensics]].
 
 
According to Helix3 Support Forum, e-fense is no longer planning on updating the free version of Helix.
 
 
== Tools Included ==
 
 
Helix focuses on Incident Response and forensics tools. It is meant to be used by individuals who have a sound understanding of Incident Response and forensic techniques.
 
 
=== Bootable Side ===
 
 
* [[The Sleuth Kit]] (3.0.0)
 
* [[dc3dd]]
 
* [[dcfldd]]
 
* [[LinEn]]
 
* [[aimage]]
 
 
''and others.''
 
 
=== Windows Side ===
 
 
* [[FTK Imager]]
 
* [[mdd]]
 
* [[WinDD | win32dd]]
 
* [[winen]]
 
* [[WFT]]
 
* [[IRCR]]
 
 
''and others.''
 
 
Windows side can be used to scan for pictures on a live system.
 
 
== Forensic Issues ==
 
 
* Helix3 will automount [[Ext3]] / [[Ext4]] file systems during the boot process and recover them if required (bug in ''initrd'' scripts);
 
* Helix3 can automount some storage devices like firewire devices and MMC in read/write mode;
 
* Helix3 relies on file system drivers to provide write protection, mounting some file system types (e.g. [[XFS]]) will result in several data writes to the original media.
 
 
== See Also ==
 
 
* [[Helix3 Pro]]
 
  
 
== External Links ==
 
== External Links ==
 
+
* [http://sourceforge.net/projects/windowsir/ Project site]
* [http://forum.charlestendell.com Helix3 CE Forum]
+

Latest revision as of 04:46, 18 January 2014

Information icon.png

Please help to improve this article by expanding it.
Further information might be found on the discussion page.

Forensic Server Project
Maintainer: Harlan Carvey
OS: Windows
Genre: Incident Response
License: GPL
Website: sourceforge.net/projects/windowsir/

External Links