Difference between pages "Upcoming events" and "Linux Repositories"

From ForensicsWiki
(Difference between pages)
Jump to: navigation, search
(Scheduled Training Courses)
 
(Imaging Tools)
 
Line 1: Line 1:
Here is a BY DATE listing of '''upcoming conferences and training events''' that pertain to [[digital forensics]]. Some of these duplicate the generic [[conferences]], but have specific dates/locations for the upcoming conference/training event.
 
  
<b> The Conference and Training List is provided by the American Academy of Forensic Sciences (AAFS) Digital and Multi-media Listserv</b>
+
There are a number of linux distributions.
<i> (Subscribe by sending an email to listserv@lists.mitre.org with message body containing SUBSCRIBE AAFS-DIGITAL-MULTIMEDIA-LIST)</i>
+
<b> Any requests for additions, deletions or corrections to this list should be sent by email to David Baker <i>(bakerd AT mitre.org)</i>. </b>
+
  
== Calls For Papers ==
+
In general they have primary repositories which are setup for every installation of the operating system and they have special purpose repositories which require specific setup.
{| border="0" cellpadding="2" cellspacing="2" align="top"
+
 
|- style="background:#bfbfbf; font-weight: bold"
+
=Repository Setup=
! Title
+
==openSUSE==
! Due Date
+
For current openSUSE 11.4 and 12.1 users it is necessary to have the following repositories configured:
! Website
+
 
 +
*security
 +
*devel:languages:perl
 +
*devel:languages:python
 +
 
 +
This is most easily done from the command line via (assumes openSUSE 12.1):
 +
 
 +
sudo zypper ar -f <nowiki>http://download.opensuse.org/repositories/security/openSUSE_12.1</nowiki> security
 +
sudo zypper ar -f <nowiki>http://download.opensuse.org/repositories/devel:/languages:/perl</nowiki>/openSUSE_12.1 perl
 +
sudo zypper ar -f <nowiki>http://download.opensuse.org/repositories/devel:/languages:/python/openSUSE_12.1</nowiki> python
 +
 +
zypper lr  <nowiki>          </nowiki>  # used to verify you have the repos installed
 +
 
 +
==fedora==
 +
==debian==
 +
==fedora==
 +
 
 +
=Computer Forensic Tools=
 +
Below is a list of computer forensic tools.  For each tool the repository it can be found in and the version in the repository is shown.
 +
 
 +
As an example, aimage is in the openSUSE security repository and it is version 3.2.5
 +
 
 +
==Imaging Tools==
 +
 
 +
{|border="1" cellpadding="2" cellspacing="0" {{repository table}}
 
|-
 
|-
|First Annual European DeepSec In-Depth Security Conference
+
|rowspan=1| '''Tool'''
|Jun 10, 2007
+
| '''openSUSE'''
|http://deepsec.net/cfp/
+
|'''fedora'''
 +
|'''debian'''
 +
|'''ubuntu'''
 +
| comment
 +
|rowspan=1| General Remarks
 +
 
 
|-
 
|-
|DFRWS 2007 File Carving Challenge
+
|rowspan=1| aimage
|Jul 09, 2007
+
|security/3.2.5 <!-- opensuse -->
|http://www.dfrws.org/2007/challenge/submission.html
+
|?              <!-- fedora-->
|-
+
|?              <!-- debian-->
|Digital Forensic Forum Prague 2007
+
|?              <!-- ubuntu-->
|Aug 31, 2007
+
|a imaging tool to create aff format images  <!-- comment -->
|http://www.dff-prague.com/News/article/sid=17.html
+
|aimage has been EOL'ed.  guymager or ftkimager (windows/mac) are recommended <!-- General Remarks -->
|}
+
  
== Conferences ==
 
{| border="0" cellpadding="2" cellspacing="2" align="top"
 
|- style="background:#bfbfbf; font-weight: bold"
 
! Title
 
! Date/Location
 
! Website
 
 
|-
 
|-
|2007 Techno-Security Conference
+
|rowspan=1| [[http://www.forensicswiki.org/wiki/Guymager|guymager]]
|Jun 03-06, Myrtle Beach, SC
+
|N/A<!-- opensuse -->
|http://www.techsec.com/html/Techno2007.html
+
|?              <!-- fedora-->
|-
+
|?              <!-- debian-->
|Computer Security Institute NetSec '07
+
|?              <!-- ubuntu-->
|Jun 11-13, Scottsdale, AZ
+
|a imaging tool to create aff format images  <!-- comment -->
|http://www.gocsi.com/netsec/
+
|Guymager is an open source forensic imager. It focuses on user friendliness and high speed. <!-- General Remarks -->
|-
+
|2007 USENIX Annual Technical Conference
+
|Jun 17-22, Santa Clara, CA
+
|http://www.usenix.org/events/
+
|-
+
|Third Government Forum of Incident Response and Security Teams Conference
+
|Jun 25-29, Orlando, FL
+
|http://www.us-cert.gov/GFIRST/index.html
+
|-
+
|First International Workshop on Cyber-Fraud
+
|Jul 01-06, San Jose, CA
+
|http://www.iaria.org/conferences2007/CYBERFRAUD.html
+
|-
+
|Detection of Intrusions and Malware & Vulnerability Assessment (DIMVA) 2007
+
|Jul 12-13, Lucerne, Switzerland
+
|http://www.gi-ev.de/fachbereiche/sicherheit/fg/sidar/dimva/
+
|-
+
|BlackHat Briefings
+
|Jul 28-Aug 02, Las Vegas, NV
+
|http://www.blackhat.com/html/bh-link/briefings.html
+
|-
+
|DefCon
+
|Aug 03-05, Las Vegas, NV
+
|http://www.defcon.org/
+
|-
+
|16th USENIX Security Symposium
+
|Aug 06-10, Boston, MA
+
|http://www.usenix.org/events/
+
|-
+
|GMU 2007 Symposium
+
|Aug 06-10, George Mason University, Fairfax, VA
+
|http://www.rcfg.org
+
|-
+
|[[Digital Forensic Research Workshop|Digital Forensic Research Workshop 2007]]
+
|Aug 13-15, Pittsburgh, PA
+
|http://www.dfrws.org/2007/index.html
+
|-
+
|HTCIA 2007 International Training Conference & Exposition
+
|Aug 27-29, San Diego, CA
+
|http://www.htcia-sd.org/htcia2007.html
+
|-
+
|Recent Advances in Intrusion Detection (RAID) 2007
+
|Sep 05-07, Gold Coast, Queensland, Australia
+
|http://www.isi.qut.edu.au/events/conferences/raid07
+
|-
+
|14th International Conference on Image Analysis and Processing (ICIAP 2007)
+
|Sep 10-14, Modena, Italy
+
|http://www.iciap2007.org
+
|-
+
|3rd International Conference on IT-Incident Management & IT-Forensics
+
|Sep 11-12, Stuttgart, Germany
+
|http://www.imf-conference.org/
+
|-
+
|Black and White Ball
+
|Sep 25-28, London, UK
+
|http://www.theblackandwhiteball.co.uk/
+
|-
+
|BlackHat Japan - Briefings
+
|Oct 23-26, Tokyo, Japan
+
|http://www.blackhat.com/html/bh-japan-07/bh-jp-07-main.html
+
|-
+
|Techno-Forensics Conference
+
|Oct 29 - 31, Rockville, MD
+
|http://www.techsec.com/html/TechnoForensics2007.html
+
|-
+
|DeepSec IDSC
+
|Nov 22-24, Vienna, Austria
+
|http://deepsec.net/
+
|-
+
|Digital Forensic Forum Prague 2007
+
|Nov 26-27, Prague, Czech Republic
+
|http://www.dff-prague.com/
+
|-
+
|DoD Cyber Crime Conference 2008
+
|Jan 13-18 2008, St. Louis, MO
+
|http://www.dodcybercrime.com/
+
|-
+
|AAFS Annual Meeting
+
|Feb 18-23 2008, Washington, DC
+
|http://aafs.org/default.asp?section_id=meetings&page_id=aafs_annual_meeting
+
|}
+
  
== On-going / Continuous Training ==
 
{| border="0" cellpadding="2" cellspacing="2" align="top"
 
|- style="background:#bfbfbf; font-weight: bold"
 
! Title
 
! Date/Location or Venue
 
! Website
 
 
|-
 
|-
|Basic Computer Examiner Course
+
|rowspan=1| package3
|Computer Forensic Training Online
+
|?              <!-- opensuse -->
|http://www.cftco.com
+
|?              <!-- fedora-->
|-
+
|?              <!-- debian-->
|MaresWare Suite Training
+
|?              <!-- ubuntu-->
|First full week every month, Atlanta, GA
+
|another package of unknown purpose  <!-- comment -->
|http://www.maresware.com/maresware/training/maresware.htm
+
|This is just another place holder to make the page look like something is going on. <!-- General Remarks -->
|-
+
|Linux Data Forensics Training
+
|Distance Learning Format
+
|http://www.crazytrain.com/training.html
+
|-
+
|Evidence Recovery for Windows Vista&trade;
+
|First full week every month, Brunswick, GA
+
|http://www.internetcrimes.net
+
|-
+
|Evidence Recovery for the Windows Server&reg; 2003 Release 2 operating system
+
|Second full week every month, Brunswick, GA
+
|http://www.internetcrimes.net
+
|-
+
|Evidence Recovery for the Windows XP&trade; operating system
+
|Third full week every month, Brunswick, GA
+
|http://www.internetcrimes.net
+
|-
+
|}
+
  
== Scheduled Training Courses ==
 
{| border="0" cellpadding="2" cellspacing="2" align="top"
 
|- style="background:#bfbfbf; font-weight: bold"
 
! Title
 
! Date/Location
 
! Website
 
! Limitation
 
|-
 
|SMART for Linux
 
|Jun 04-07, Austin, TX
 
|http://asrdata.com/training/training2.html
 
|-
 
|AccessData BootCamp
 
|Jun 05-07, Albuquerque, NM
 
|http://www.accessdata.com/training
 
|-
 
|Advanced Data Forensics Topics
 
|Jun 11-13, Austin, TX
 
|http://asrdata.com/training/training2.html
 
|-
 
|Digital Evidence Acquisition Specialist Training Program (DEASTP)
 
|Jun 11-22, FLETC, Glynco, GA
 
|http://www.fletc.gov/training/programs/computer-financial-investigations/technology-investigation/
 
|Limited to Law Enforcement
 
|-
 
|Helix Live Forensics and Incident Response Course
 
|Jun 12-14, SEARCH - Sacramento, CA
 
|https://www.e-fense.com/register.php
 
|-
 
|AccessData Internet Forensics
 
|Jun 12-14 , Boise, ID
 
|http://www.accessdata.com/training
 
|-
 
|AccessData Windows Forensics
 
|Jun 19-21, Dallas, TX
 
|http://www.accessdata.com/training
 
|-
 
|SMART for Linux
 
|Jul 09-12, Austin, TX
 
|http://asrdata.com/training/training2.html
 
|-
 
|Cyber Counterterrorism Investigations Training Program (CCITP)
 
|Jul 09-13, FLETC, Glynco, GA
 
|http://www.fletc.gov/training/programs/computer-financial-investigations/technology-investigation/
 
|Limited to Law Enforcement
 
|-
 
|SMART Windows Data Forensics
 
|Jul 16-18, Austin, TX
 
|http://asrdata.com/training/training2.html
 
|-
 
|Seized Computer Evidence Recovery Specialist (SCERS)
 
|Jul 16-27, FLETC, Glynco, GA
 
|http://www.fletc.gov/training/programs/computer-financial-investigations/technology-investigation/
 
|Limited to Law Enforcement
 
|-
 
|AccessData BootCamp
 
|Jul 17-19, Boise, ID
 
|http://www.accessdata.com/training
 
|-
 
|AccessData Windows Forensics
 
|Jul 24-26, Albuquerque, NM
 
|http://www.accessdata.com/training
 
|-
 
|Network Forensics and Investigations Workshop
 
|Jul 25-27, Washington, DC
 
|http://www.strozllc.com/trainingcenter/
 
|-
 
|First Responder to Digital Evidence Program (FRDE)
 
|Jul 31-Aug 02, FLETC, Glynco, GA
 
|http://www.fletc.gov/training/programs/computer-financial-investigations/technology-investigation/
 
|Limited to Law Enforcement
 
|-
 
|SARC Steganography Examiner Training
 
|Aug 04 - 05, Fairfax, VA (RCFG/GMU Conference 2007)
 
|http://www.sarc-wv.com/training.aspx
 
|-
 
|SMART for Linux
 
|Aug 06-09, Austin, TX
 
|http://asrdata.com/training/training2.html
 
|-
 
|X-Ways Forensics
 
|Aug 6-8, Seattle, WA
 
|http://www.x-ways.net/training/seattle.html
 
|-
 
|File Systems Revealed
 
|Aug 9-10, Seattle, WA
 
|http://www.x-ways.net/training/seattle.html
 
|-
 
|Computer Network Investigations Training Program (CNITP)
 
|Aug 14-24, FLETC, Glynco, GA
 
|http://www.fletc.gov/training/programs/computer-financial-investigations/technology-investigation/
 
|Limited to Law Enforcement
 
|-
 
|SMART Linux Data Forensics
 
|Aug 13-15, Austin, TX
 
|http://asrdata.com/training/training2.html
 
|-
 
|Network Forensics and Investigations Workshop
 
|Aug 13-15, Los Angeles, CA
 
|http://www.strozllc.com/trainingcenter/
 
|-
 
|Macintosh Forensic Survival Course
 
|Aug 13-17, Fredricksburg, VA
 
|http://www.phoenixdatagroup.com/cart/index.php
 
|-
 
|AccessData Internet Forensics
 
|Aug 14-16 , Austin, TX
 
|http://www.accessdata.com/training
 
|-
 
|Helix Live Forensics and Incident Response Course
 
|Aug 28-30, Tennessee Bureau of Investigations - Nashville, TN
 
|https://www.e-fense.com/register.php
 
|-
 
|SMART for Linux
 
|Sep 03-06, Austin, TX
 
|http://asrdata.com/training/training2.html
 
|-
 
|First Responder to Digital Evidence Program (FRDE)
 
|Sep 11-13, FLETC, Glynco, GA
 
|http://www.fletc.gov/training/programs/computer-financial-investigations/technology-investigation/
 
|Limited to Law Enforcement
 
|-
 
|AccessData Applied Decryption
 
|Sep 11-13, Dallas, TX
 
|http://www.accessdata.com/training
 
|-
 
|Enterprise Data Forensics
 
|Sep 17-19, Austin, TX
 
|http://asrdata.com/training/training2.html
 
|-
 
|Macintosh Forensic Survival Course
 
|Sep 24-28, Santa Ana, CA
 
|http://www.phoenixdatagroup.com/cart/index.php
 
|-
 
|AccessData Applied Decryption
 
|Sep 25-27, Chicago, IL
 
|http://www.accessdata.com/training
 
|-
 
|AccessData BootCamp
 
|Sep 25-27, Solna, SE
 
|http://www.accessdata.com/training
 
|-
 
|SMART for Linux
 
|Oct 01-04, Austin, TX
 
|http://asrdata.com/training/training2.html
 
|-
 
|SMART Windows Data Forensics
 
|Oct 08-10, Austin, TX
 
|http://asrdata.com/training/training2.html
 
|-
 
|X-Ways Forensics
 
|Oct 22-24, Hong Kong
 
|http://www.x-ways.net/training/hong_kong.html
 
|-
 
|File Systems Revealed
 
|Oct 25-26, Hong Kong
 
|http://www.x-ways.net/training/hong_kong.html
 
|-
 
|SARC Steganography Examiner Training
 
|Oct 26 - 27, Gaithersburg, MD (Techno Forensics Conference 2007)
 
|http://www.sarc-wv.com/training.aspx
 
|-
 
|SMART for Linux
 
|Nov 05-08, Austin, TX
 
|http://asrdata.com/training/training2.html
 
|-
 
|AccessData BootCamp
 
|Nov 06-08, Austin, TX
 
|http://www.accessdata.com/training
 
|-
 
|AccessData Windows Forensics
 
|Nov 06-08, Solna, Sweden
 
|http://www.accessdata.com/training
 
|-
 
|SMART Linux Data Forensics
 
|Nov 12-14, Austin, TX
 
|http://asrdata.com/training/training2.html
 
|-
 
|SMART for Linux
 
|Dec 03-06, Austin, TX
 
|http://asrdata.com/training/training2.html
 
|-
 
|AccessData Internet Forensics
 
|Dec 04-06 , Solna, Sweden
 
|http://www.accessdata.com/training
 
|-
 
|Enterprise Data Forensics
 
|Dec 10-12, Austin, TX
 
|http://asrdata.com/training/training2.html
 
|-
 
 
|}
 
|}

Revision as of 13:49, 24 February 2012

There are a number of linux distributions.

In general they have primary repositories which are setup for every installation of the operating system and they have special purpose repositories which require specific setup.

Repository Setup

openSUSE

For current openSUSE 11.4 and 12.1 users it is necessary to have the following repositories configured:

  • security
  • devel:languages:perl
  • devel:languages:python

This is most easily done from the command line via (assumes openSUSE 12.1):

sudo zypper ar -f http://download.opensuse.org/repositories/security/openSUSE_12.1 security
sudo zypper ar -f http://download.opensuse.org/repositories/devel:/languages:/perl/openSUSE_12.1 perl
sudo zypper ar -f http://download.opensuse.org/repositories/devel:/languages:/python/openSUSE_12.1 python

zypper lr               # used to verify you have the repos installed

fedora

debian

fedora

Computer Forensic Tools

Below is a list of computer forensic tools. For each tool the repository it can be found in and the version in the repository is shown.

As an example, aimage is in the openSUSE security repository and it is version 3.2.5

Imaging Tools

Tool openSUSE fedora debian ubuntu comment General Remarks
aimage security/3.2.5 ? ? ? a imaging tool to create aff format images aimage has been EOL'ed. guymager or ftkimager (windows/mac) are recommended
[[1]] N/A ? ? ? a imaging tool to create aff format images Guymager is an open source forensic imager. It focuses on user friendliness and high speed.
package3 ? ? ? ? another package of unknown purpose This is just another place holder to make the page look like something is going on.