12 Apr
2004
12 Apr
'04
9:06 a.m.
Eigentlich wollte ich Dir folgendes Paket empfehlen:
$apt-cache show sleuthkit Description: Tools for forensics analysis The Sleuth Kit allows an investigator examine the file systems of a suspect computer in a non-intrusive fashion. The Sleuth Kit is a collection of UNIX-based command line tools that can analyze NTFS, FAT, FFS, EXT2FS, and EXT3FS file systems. The Sleuth Kit reads and processes the file system structures itself and therefore operating system support for the file systems is not required. Furthermore, these can be used during Incident Response on live systems to bypass the kernel and view files that are being hidden by rootkits.
Bert
--
| http://www.bert-lange.de.vu | encrypted mails are welcome |
| phone://0351-8014590 | keyID:6CB4FE7F http://wwwkeys.de.pgp.net |
| icq://120322475 | weitere Infos unter http://www.gnupg.de |