Difference between pages "OSSEC" and "File Analysis"

From Forensics Wiki
(Difference between pages)
Jump to: navigation, search
(Removing text because of possible legal problems (text copied from a website). Will post more details later.)
 
m (added Main article Tools:File Analysis)
 
Line 1: Line 1:
'''OSSEC HIDS''' is an open source host-based intrusion detection system.
+
{{Expand}}
 +
 
 +
'''File analysis''' is an important part of [[computer forensics]].
 +
 
 +
== Introduction ==
 +
 
 +
...
 +
 
 +
== Malware Forensics ==
 +
 
 +
...
 +
 
 +
== Tools ==
 +
 
 +
{{main|Tools:File Analysis}}
 +
 
 +
; [[Prevx1]]
 +
: http://fileinfo.prevx.com/
 +
: Very helpful site that identifies/tracks/analyzes 100,000 new executable programs per day around the globe. They have a heuristic engine capable of sorting the good from the bad/harmful ([[malware]]).
 +
 
 +
[[Hachoir]] — Python framework for binary file manipulation
  
 
== External Links ==
 
== External Links ==
  
* [http://www.ossec.net/ Official Website]
+
* ...

Revision as of 14:24, 19 October 2008

Information icon.png

Please help to improve this article by expanding it.
Further information might be found on the discussion page.

File analysis is an important part of computer forensics.

Contents

Introduction

...

Malware Forensics

...

Tools

Main article Tools:File Analysis
Prevx1
http://fileinfo.prevx.com/
Very helpful site that identifies/tracks/analyzes 100,000 new executable programs per day around the globe. They have a heuristic engine capable of sorting the good from the bad/harmful (malware).

Hachoir — Python framework for binary file manipulation

External Links

  • ...
Retrieved from "http://www.forensicswiki.org/w/index.php?title=OSSEC&oldid=3201"
Personal tools
Namespaces

Variants
Actions
Navigation:
About forensicswiki.org:
Toolbox