Revision as of 15:15, 6 March 2006

ASR

Builds a tool for Linux. Coming soon is an "ultra-portable attack box".

Can it build timelines and search by creation date?

Offers power regex searches.

Can it search? Does it build an index? Can it focus on file types or particular kinds of metadata?

Can it create hashes of files and/or blocks? Can it compare these hash values to any databases? What sort of hash functions does it use?

"Just about everything you do is logged in SMART. You can selectively export these log events into a simple HTML report."

Originally written in (YEAR), it has now developed into a Forensic Edition and an Enterprise Edition.

Is it commercial or open source? Are there other licensing options?

@@ Line 1: / Line 1: @@
+=ASR=
+Builds a tool for Linux. Coming soon is an "ultra-portable attack box".
+[http://www.asrdata.com/ website]
@@ Line 12: / Line 17: @@
 ==Searching Abilities==
+Offers power regex searches.
 Can it search? Does it build an index? Can it focus on file types or particular kinds of metadata?
 ==Hash Databases==
+* Uses SHA1, MD5 and CRC.
 Can it create hashes of files and/or blocks? Can it compare these hash values to any databases?
@@ Line 22: / Line 32: @@
 ==Evidence Collection Features==
-Can it sign files? Does it keep an audit log?
+* "Just about everything you do is logged in SMART. You can selectively export these log events into a simple HTML report."
 =History=