Difference between pages "List of Cyberspeak Podcast Interviews" and "DEFT Linux 1"

From Forensics Wiki
(Difference between pages)
Jump to: navigation, search
(2007: Added Harlan Carvey)
 
m
 
Line 1: Line 1:
The [[Cyberspeak podcast]] usually features at least one interview per show. The guests on each show are listed below.
+
{{Infobox_Software |
 +
  name = DEFT v1 Linux |
 +
  maintainer = [[Stefano Fratepietro]] |
 +
  os = {{Linux}} |
 +
  genre = {{Live CD}} |
 +
  license = {{GPL}}, others |
 +
  website = [http://www.stevelab.net/deft] |
 +
}}
  
=== 2005 ===
+
'''DEFT v1''' is a [[Live CD]] built on top of Kubuntu 6.10 with the best tools for Computer Forensic and incident response.
  
* 18 Dec 2005: [[Nick Harbour]], author of [[Dcfldd|dcfldd]]
+
== Tools included ==
* 31 Dec 2005: [[Jesse Kornblum]], author of [[foremost]] and [[md5deep]]
+
  
=== 2006 ===
+
'''Deft computer and network forensic packages list:'''
  
* 7 Jan 2006: [[Drew Fahey]], author of [[Helix]]
+
: - sleuthkit, collection of UNIX-based command line tools that allow you to investigate a computer
* 18 Jan 2006: [[Simple Nomad]]
+
: - autopsy, graphical interface to the command line digital investigation tools in The Sleuth Kit
* 21 Jan 2006: [[Johnny Long]]
+
: - aff lib, advanced forensic format
* 28 Jan 2006: [[Kevin Mandia]]
+
: - gpart, tool which tries to guess the primary partition table of a PC-type hard disk
 +
: - dd rescue, copy data from one file or block device to another
 +
: - foremost, console program to recover files based on their headers, footers, and internal data structures
 +
: - hex dump, combined hex and ascii dump of any file
 +
: - khex edit, a versatile and customizable hex editor
 +
: - steg detect, a steganography detection software
 +
: - outguess, a stegano tool
 +
: - ophcrack, Windows password recovery
 +
: - wireshark, network sniffer
 +
: - ettercap, network sniffer
 +
: - nessus, vulnerability and security scanner
 +
: - nmap, the best network scanner
 +
: - airsnort, wireless LAN (WLAN) tool which recovers encryption keys
 +
: - kismet, sniffer and intrusion detection system that work with any wireless card
 +
: - dmraid, discover software RAID devices
 +
: - testdisk, tool to recover damaged partitions
 +
: - qtparted, a Partition Magic clone written in C++ using the Qt toolkit
 +
: - vinetto, tool to examine Thumbs.db files
 +
: - trID, tool to identify file types from their binary signatures
 +
: - readpst, a tools to read ms-Outlook pst files
  
 +
'''Deft utility package list:'''
  
* 4 Feb 2006: [[Brian Carrier]]
+
: - linux Kernel 2.6.17
* 11 Feb 2006: [[Jesse Kornblum]]
+
: - lkDE 3.5.5
* 18 Feb 2006: [[Bruce Potter]] of the Shmoo Group
+
: - k3b
* 25 Feb 2006: [[Kris Kendall]] speaks about malware analysis
+
: - samba client
 +
: - open SSH client & server
  
  
* 4 Mar 2006: [[Dave Merkel]]
+
and mutch more...
* 11 Mar 2006: [[James Wiebe]] of [[Wiebe Tech]]. Also [[Todd Bellows]] of [[LogiCube]] about [[CellDek]]
+
* 18 Mar 2006: [[Kris Kendall]]
+
* 25 Mar 2006: (No interview)
+
  
 +
== External Links ==
  
* 1 Apr 2006: [[Harlan Carvey]], creator of the [[Forensic Server Project]]
+
* [http://www.stevelab.net/deft Official Website]
* 8 Apr 2006: (No interview)
+
* 15 Apr 2006: (No interview), but first to mention the [[Main_Page|Forensics Wiki]]!
+
* 22 Apr 2006: [[Jaime Florence]] about [[Mercury]], a text indexing product
+
 
+
 
+
* 6 May 2006: [[Mark Rache]] and [[Dave Merkel]]
+
* 13 May 2006: [[Steve Bunting]]
+
* 21 May 2006: [[Mike Younger]]
+
* 29 May 2006: [[Mike Younger]]
+
 
+
 
+
* 3 Jun 2006: [[Jesse Kornblum]] about [[Windows Memory Analysis]]
+
* 10 Jun 2006: (No interview)
+
* 17 Jun 2006: [[Mike Younger]]
+
* 24 Jun 2006: (No interview)
+
 
+
 
+
* 1 Jul 2006: (No interview)
+
* 9 Jul 2006: [[Johnny Long]]
+
* 18 Jul 2006: [[Dark Tangent]]
+
* 30 Jul 2006: [[Jesse Kornblum]] about [[Ssdeep|ssdeep]] and [[Context Triggered Piecewise Hashing|Fuzzy Hashing]]
+
 
+
 
+
* 10 Aug 2006: [[Brian Contos]] discusses his book ''Insider Threat: Enemy at the Watercooler''
+
* 13 Aug 2006: [[Richard Bejtlich]] discusses his book ''Real Digital Forensics''
+
* 27 Aug 2006: [[David Farquhar]]
+
 
+
 
+
* 3 Sep 2006: [[Keith Jones]]
+
* 10 Sep 2006: (No Interview)
+
* 17 Sep 2006: (No Interview)
+
* 24 Sep 2006: (No Interview)
+
 
+
 
+
* 1 Oct 2006: [[Brian Kaplan]], author of [[LiveView]]
+
* 8 Oct 2006: [[Tom Gallagher]] discusses his book ''Hunting Security Bugs''
+
* 15 Oct 2006: (No Interview)
+
* 29 Oct 2006: (No Interview)
+
 
+
 
+
* 12 Nov 2006: [[Jesse Kornblum]] discusses his paper ''Exploiting the Rootkit Paradox with Windows Memory Analysis''
+
* 19 Nov 2006: [[Kris Kendall]] discusses unpacking binaries when conducting malware analysis
+
* 26 Nov 2006: (No Interview)
+
 
+
 
+
* 3 Dec 2006: [[Brian Dykstra]]
+
* 10 Dec 2006: [[Mike Younger]]
+
* 17 Dec 2006: [[Mike Younger]] and [[Geoff Michelli]]
+
 
+
=== 2007 ===
+
 
+
* 7 Jan 2007: [[Jamie Butler]]
+
* 17 Jan 2007: [[Chad McMillan]]
+
* 28 Jan 2007: [[Jesse Kornblum]]
+
 
+
 
+
* 11 Feb 2007: [[Scott Moulton]]
+
* 18 Fen 2007: [[Phil Zimmerman]], creator of [[PGP]] discussing his new [[Zfone]]
+
* 25 Feb 2007: [[Mark Menz]] and [[Jeff Moss]]
+
 
+
 
+
* 4 Mar 2007: No show due to technical difficulties
+
* 12 Mar 2007: [[Trevor Fairchild]] of [[Ontario Provincial Police Department]] discussing [[C4P]] and [[C4M]], both add-ons to [[EnCase]]
+
* 18 Mar 2007: [[Tony Hogeveen]] of [[DeepSpar]] Date Recovery Systems
+
* 25 Mar 2007: Shmoocon broadcast
+
 
+
 
+
* 1 Apr 2007: [[Kevin Smith]] from LTU Technologies about [[Image Seeker]]
+
* 15 Apr 2007: [[Jim Christy]] from the [[Defense Cyber Crime Center]]
+
* 22 Apr 2007: [[Jesse Kornblum]] all about the [[Main_Page|Forensics Wiki]]!
+
* 29 Apr 2007: [[Harlan Carvey]] discusses his new book
+

Revision as of 09:25, 16 November 2008

DEFT v1 Linux
Maintainer: Stefano Fratepietro
OS: Linux
Genre: Live CD
License: GPL, others
Website: [1]

DEFT v1 is a Live CD built on top of Kubuntu 6.10 with the best tools for Computer Forensic and incident response.

Tools included

Deft computer and network forensic packages list:

- sleuthkit, collection of UNIX-based command line tools that allow you to investigate a computer
- autopsy, graphical interface to the command line digital investigation tools in The Sleuth Kit
- aff lib, advanced forensic format
- gpart, tool which tries to guess the primary partition table of a PC-type hard disk
- dd rescue, copy data from one file or block device to another
- foremost, console program to recover files based on their headers, footers, and internal data structures
- hex dump, combined hex and ascii dump of any file
- khex edit, a versatile and customizable hex editor
- steg detect, a steganography detection software
- outguess, a stegano tool
- ophcrack, Windows password recovery
- wireshark, network sniffer
- ettercap, network sniffer
- nessus, vulnerability and security scanner
- nmap, the best network scanner
- airsnort, wireless LAN (WLAN) tool which recovers encryption keys
- kismet, sniffer and intrusion detection system that work with any wireless card
- dmraid, discover software RAID devices
- testdisk, tool to recover damaged partitions
- qtparted, a Partition Magic clone written in C++ using the Qt toolkit
- vinetto, tool to examine Thumbs.db files
- trID, tool to identify file types from their binary signatures
- readpst, a tools to read ms-Outlook pst files

Deft utility package list:

- linux Kernel 2.6.17
- lkDE 3.5.5
- k3b
- samba client
- open SSH client & server


and mutch more...

External Links