Re: [sleuthkit-users] How to set up the sleuth kit in Linux
Brought to you by:
carrier
Menu
▾
▴
Re: [sleuthkit-users] How to set up the sleuth kit in Linux
|
From: <hl...@kr...> - 2006-11-17 13:54:53
|
On 17/11/2006, at 14.33, =E7=8E=8B =E7=85=9C wrote: > I know nothing about Linux, but I need to use the sleuth kit and =20 > the autopsy. So I want to know the steps to install these tools in =20 > Linux.Thank you! I would recommend downloading a boot CD with Linux that has autopsy preinstalled. You wont get the latest, but you will get an idea of the tools great potential. Something like Auditor Security Collection which can be found at: http://www.remote-exploit.org/index.php/Auditor They also produce a boot CD called BackTrack, but this one it more =20 bleeding edge and still has some rough edges. Using a boot CD you dont need to waiste time doing a lot of downloading, installing, selecting packages, compiling - but can go right to =20 running nice applications like autopsy and TASK. I have used boot CD's on multiple occasion with people without any forensic and linux skills. Went pretty OK and we played around using stuff like Honeynet Project Scan of the Month challenges. You need USB key for data or install the boot CD on a partition if you want to keep data from "session to session". Best regards Henrik -- Henrik Lund Kramsh=C3=B8j, cand.scient, CISSP Follower of the Great Way = of =20 Unix e-mail: hl...@se..., tlf: 2026 6000 www.security6.net - IPv6, sikkerhed, netv=C3=A6rk =20= Overhold netikketten! http://e-learning.security6.net - gratis kursusmateriale http://=20= usenet.dk/netikette/ |
