Re: Forensics CD

From: Ryan McBride (mcbride@countersiege.com)
Date: 10/09/02


Date: Wed, 9 Oct 2002 16:20:16 +0000
From: Ryan McBride <mcbride@countersiege.com>
To: H C <keydet89@yahoo.com>

On Wed, Oct 09, 2002 at 08:05:56AM -0700, H C wrote:
>
> > You might want to look at FIRE which is a primarily
> > a CD bootable linux distribution
>
> The same would be true for FIRE, as well. It's an
> excellent solution...but by booting to Linux, you
> loose out on all that volatile data you have access
> to...

Earlier versions of FIRE actually had a number of binaries for
performing analysis on live systems (i386 Windows and Sparc Solaris),
but they appear to have been pulled in more recent releases due to
licensing issues. Hopefully we'll start seeing some utilities with more
favorable licensing in the next version(s).

-Ryan

-- 
Ryan T. McBride, CISSP - mcbride@countersiege.com
Countersiege Systems Corporation - http://www.countersiege.com
PGP key fingerprint = 8BA0 A58C 5038 9157 59C3  F9E6 6DDA 6611 BF4C 776B

---------------------------------------------------------------------------- This list is provided by the SecurityFocus ARIS analyzer service. For more information on this free incident handling, management and tracking system please see: http://aris.securityfocus.com