We will be making a presentation and handing out DVDs filled with data at the Open Source Forensics Conference, held in conjunction with the Basis Technology Government User’s Conference, June 8-9, 2010, at the Westfield Marriott in Chantilly, VA.
ISO 9660 disk images from anti-forensics.ru posted
Our friends at anti-forensics.ru have given us seven very small disk images that are designed to demonstrate failings of particular open source Linux distributions.
You can view all of the images at http://digitalcorpora.org/corp/images/aor/. The images you will find there includes:
- 2009-aor-test_caine15.iso
- 2009-aor-test_deft5.iso
- 2009-aor-test_grml200910.iso
- 2009-aor-test_othernew.iso
- 2009-aor-test_otherold.iso
- 2009-aor-test_raptor20091026.iso
- 2009-aor-test_spada4.iso
These images should be directly copied to a hard drive or a partition. Forensic Linux distributions would use them as root file systems and execute proof-of-concept code during the boot.
Details of why these images are useful can be found on the author’s website, at: Linux_for_computer_forensic_investigators_2.pdf
MySQL tables for NIST NSRL RDS 2.26 posted
Ever want to have SQL access to the NIST RDS but didn’t want to spend a month building the MySQL tables? Well, we did too… So we took one of our 8-core, 32GB servers, imported all of the NSRL, and then put a tar file of the tables available for download on this server.
To use these files just download http://downloads.digitalcorpora.org/corpora/files/nist-nsrl-rds226.tar.bz2 and put the files in your MySQL data directory. You’ll be up-and-running in no time.
New Website
We are revising the structure and content of this website. Please let us know if you find any problems.