To all-
Agile Risk Management is committed to advancing information security
concepts, technology, and techniques. As such, we have developed Nigilant32,
a freeware Windows GUI Incident Response tool based on the source code
provided by Sleuthkit.
Nigilant32 is an incident response tool designed to capture as much
information as possible from a running system with the smallest potential
impact. Nigilant32 has been developed with Windows 2000, XP, and 2003 in
mind, and should work fine with computers running one of those operating
systems. Nigilant32 is beta software and may not work in all instances.
In addition, over the next three weeks we'll be releasing one article each
week covering how to use Nigilant32 to perform different Incident Response
tasks.
The first article is "Nigilant32 For First Responders: The SnapShot". This
article covers using Nigilant32 to review and save a report of the running
system that includes Processes, Services, User accounts, Scheduled Tasks,
Network Ports, etc.
We sincerely hope you find Nigilant32 useful, however please remember, it is
beta software therefore you should exercise good judgment when using it in
your IT environment.
Nigilant32, articles (as they are released), and modified Sleuthkit source
code (libsleuthkit) is available at
http://www.agilerm.net/publications_4.html
Warmest Regards,
Matthew M Shannon, CIFI, CISSP
Principal - Computer Forensics and Litigation Support
Agile Risk Management LLC
2202 N Westshore Blvd, Suite 200
Tampa, FL 33607
msh...@ag...
(M) 813.732.5076
(O) 1.877.AGILE13 (877.244.5313)
<http://www.agileriskmanagement.com/> www.agileriskmanagement.com
|
