The FCCU is the Belgian (Federal) Computer Crime Unit. I know since the presentation from Hack.lu 2006 that the FCCU has their own Forensics LiveCD. It was version 9 at the time and was available from lnx4n6.be. The FCCU as government service has of course limited budgets but anyway I find it very cool the way they embrace opensource and contribute to it.
It seemed that their livecd wasn't maintained anymore but apparently they have moved up to version 12 and now released it to the public including the intermediate versions.
What's new:
- The CD is now based on the excellent Debian Live Project
- There is now a graphical user interface by default (xfce4)
- A new graphical tool is used for forensic copy : GuyMager
- It support Encase ewf images (through libewf)
- It makes a intelligent use of multicore CPU's in a way that compressed copies will be done faster than uncompressed ones
- Designed to be very simple to use in the Unix way of thinking
- Find it in the main menu (right click on the desktop)
- A new low interaction honeypot was added, Amun:
- Find this tool in the root user directory
- Read the doc to use it
- This version is based on Debian "Lenny" (testing) but we will try to have a "Sid" based version soon
- Because of the simplicity of Debian Live Helpers, expect new versions more often
- Last but not least, thanks to the whole Debian team and the Open Source community
Related posts:
- The Cisco Security Response: Rootkits on Cisco IOS Devices
- The Belgian iPhone introduction and some new security tips
- Webcast: iPhone Forensics Demonstration
- Partytricks: a winlockpwn tutorial or how to log into a computer without the password
- Unlock a Windows PC without the password through Firewire (UPDATED)
- Harddisk encryption loophole found
- Excellent Forensics Live CDs
Security4all Blog
Twitter
Slideshare
Facebook
Digg
Flickr
0 comments:
Post a Comment