Re: [plug] forensic tools

Top Page

Reply to this message
Author: Michael Tinsay
Date:  
To: Philippine Linux Users' Group \(PLUG\) Technical Discussion List
New-Topics: [plug] Openmoko Neo Freerunner available for USD399.00
Subject: Re: [plug] forensic tools
Thanks. I'll try them.


--- mike t.




----- Original Message ----
From: Xander Solis <xrsolis@???>
To: Philippine Linux Users' Group (PLUG) Technical Discussion List <plug@???>
Sent: Wednesday, June 25, 2008 18:25:37
Subject: Re: [plug] forensic tools

Hi Mike,

Good day.

Pasco and Galleta are tools for IE Forensics. Helix, the Linux Live CD distribution built for forensic analysis, has these tools.

Hope this helps,















































































On Mon, Jun 23, 2008 at 10:50 AM, Michael Tinsay <tinsami1@???> wrote:

Hi all,

I'm trying to do some semipro (in between amateur and pro ;-) ) forensics investigation on a Windows PC. Mainly trying to get details related to web browsing with IE wherein the Histories have been removed, cache flushed, etc.

So far, I've tried ntfsundelete and foremost. I'll be trying PhotoRec sometime today. Any other tools I might try?


--- mike t.

_________________________________________________
Philippine Linux Users' Group (PLUG) Mailing List
http://lists.linux.org.ph/mailman/listinfo/plug
Searchable Archives: http://archives.free.net.ph



--
--
Xander Solis
xrsolis.blogspot.com_________________________________________________
Philippine Linux Users' Group (PLUG) Mailing List
http://lists.linux.org.ph/mailman/listinfo/plug
Searchable Archives: http://archives.free.net.ph