Summerschool Aachen 2004/Incident Research Lab

From C4 Wiki

< Summerschool Aachen 2004

Revision as of 15:33, 4 October 2004 by Mario Manno (talk | contribs)

(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)

Jump to: navigation, search

Notes on Presentations

Notes on Lab Session

Debian packages you might find usefull

You might want to look into the following tools:

graverobber - grab important data from system
ddrescue - spiced up dd
sleuthkit, autopsy - forensic toolkit (includes inode cat, ...)
fcrackzip - zip password cracker
nasm - netwide disasembler
e2undel - undelete for ext2
ntfstools - undelete for ntfs
bview - nice hex editor, vim-like
bsdmainutils (includes hd), or vim (includes xxd)

Retrieved from "https://wiki.koeln.ccc.de/index.php?title=Summerschool_Aachen_2004/Incident_Research_Lab&oldid=1799"