[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Bug#189437: ITP: sleuthkit -- Tools for forensics analysis

Package: wnpp
Version: unavailable; reported 2003-04-17
Severity: wishlist

* Package name    : sleuthkit
  Version         : 1.61
  Upstream Author : Brian Carrier <carrier@atstake.com>
* URL             : http://sleuthkit.sourceforge.net/
* License         : GNU GPL & IBM PUBLIC LICENSE VERSION 1.0
  Description     : Tools for forensics analysis

The Sleuth Kit allows an investigator examine the file systems of a suspect
computer in a non-intrusive fashion. The Sleuth Kit is a collection of
UNIX-based command line tools that can analyze NTFS, FAT, FFS, EXT2FS, and
EXT3FS file systems. The Sleuth Kit reads and processes the file system
structures itself and therefore operating system support for the file systems
is not required. Furthermore, these can be used during Incident Response on
live systems to bypass the kernel and view files that are being hidden by

-- System Information:
Debian Release: testing/unstable
Architecture: i386
Kernel: Linux manin 2.4.20 #1 sab apr 12 15:39:37 CEST 2003 i686
Locale: LANG=it_IT@euro, LC_CTYPE=it_IT@euro

Mattia Monga  Politecnico di Milano - Dip. Elettronica e Informazione
V. Ponzio 34/5 - I 20133 Milano Tel:+39-0223993494 Fax:+39-0223993411
mailto:monga@elet.polimi.it          http://www.elet.polimi.it/~monga
ICQ#14593153                                       *nec spe nec metu*

Reply to: