LinuxLinks.com
Newbies What Next ? News Forums Calendar
Home | Register | News | Group Tests | Forums | Calendar | Submit News | Polls | Personalise | Bookmark

Search





News Sections
Home
General News (3972/0)
Reviews (626/0)
Press Releases (464/0)
Distributions (187/0)
Software (807/0)
Hardware (522/0)
Security (192/0)
Tutorials (337/0)
Off Topic (180/0)


User Functions
Username:

Password:

Don't have an account yet? Sign up as a New User


Events
There are no upcoming events




The Autopsy Forensic Browser

The Autopsy Forensic Browser

The Autopsy Forensic Browser is a graphical interface to the command line digital investigation tools in The Sleuth Kit. The two together enable users to investigate volumes and file systems including NTFS, FAT, UFS1/2, and Ext2/3 in a 'File Manager' style interface and perform key word searches.

TSK and Autopsy will show you the files, data units, and metadata of NTFS, FAT, EXTxFS, and UFS file system images in a read-only environment. Autopsy allows you to search for specific types of evidence based on keywords, MAC times, hash values, and file types.

Autopsy is HTML-based and uses a client-server model. The Autopsy server runs on many systems and the client can be any platform with an HTML browser. This enables one to create a flexible environment with a central Autopsy server and several remote clients. For incident response scenarios, a CD with The Sleuth Kit and Autopsy can be created to allow the responder read-only remote access to a live suspect system from an HTML-browser on a trusted system. Refer to the README-live.txt file for more details.

Autopsy will not modify the original images and the integrity of the images can be verified in Autopsy using MD5 values.

 Autopsy 2.24

Price
Free to download
Size
0.4MB
License
GNU GPL v2
Developer
Brian Carrier

Website
www.sleuthkit.org/autopsy

System Requirements
The Sleuth Kit
libdate-manip-perl
libewf1
libyaml-syck-perl

Support Sites:
Wiki, Mailing List - users, Mailing List - announce, SourceForge Project Page

Selected Reviews:

Features include:

  • Analyze the files and directories, including the names of deleted files and files with Unicode-based names
  • The contents of files can be viewed in raw, hex, or the ASCII strings can be extracted
  • Lookup unknown files in a hash database to quickly identify it as good or bad
  • Sort the files based on their internal signatures to identify files of a known type. Autopsy can also extract only graphic images (including thumbnails). The extension of the file will also be compared to the file type to identify files that may have had their extension changed to hide them
  • Create timelines that contain entries for the Modified, Access, and Change (MAC) times of both allocated and unallocated files
  • Keyword searches of the file system image can be performed using ASCII strings and grep regular expressions
  • Meta Data structures contain the details about files and directories. Autopsy allows you to view the details of any meta data structure in the file system
  • View the contents of any data unit in a variety of formats including ASCII, hexdump, and strings
  • File system details can be viewed, including on-disk layout and times of activity
  • Supports raw, Expert Witness, and AFF file formats

The Autopsy Forensic Browser in action

Return to Digital Forensics Home Page

Bookmark and Share


Last Updated Sunday, February 05 2012 @ 12:37 PM EST


We have written a range of guides highlighting excellent free books for popular programming languages. Check out the following guides: C, C++, C#, Java, JavaScript, CoffeeScript, HTML, Python, Ruby, Perl, Haskell, PHP, Lisp, R, Prolog, Scala, Scheme, and SQL.


Group Tests
All Group Tests

Top Free Software
6 Office Suites
6 Lean Desktops
6 Desktop Search
9 Project Management
9 Groupware Apps
14 File Managers
10 Databases
21 Backup Tools
21 DVD Tools
21 Window Managers
21 Productivity Tools
21 Financial Tools
21 Text Editors
21 Video Emulators
21 Home Emulators
42 Graphics Apps
6 CAD Apps
42 Scientific Apps
10 Web Browsers
42 Email Apps
12 Instant Messaging
10 IRC Clients
7 Twitter Clients
12 News Aggregators
11 VoIP Apps
11 Remote Display Apps
9 BitTorrent Apps
42 Best Games
42 More Games
21 More Games
42 Hot Games Part 1
42 Hot Games Part 2
42 Hot Games Part 3
10 Chess Apps
9 Educational Games
42 Audio Apps
42 Video Apps
6 Screencasting Apps
80 Security Apps
9 System Monitoring
6 Family History Apps
11 PDF Tools
6 Music Servers
6 Collection Managers
7 Calculator Apps
8 Geometry Apps
Free Console Apps
14 Multimedia
Programming
8 Compilers
9 IDEs
9 Debuggers
7 Revision Control Apps
6 Doc Generators
'Free' Proprietary
21 Closed-Source Apps
Top Commercial Apps
42 Games
Free Web Software
21 Web CMS
14 Wiki Engines
8 Blog Apps
6 eCommerce Apps
5 Human Resource Apps
10 ERP
10 CRM
6 Data Warehouse Apps
8 Business Intelligence

All Group Tests

Other Articles
Migrating from Windows
Back up your data
Distribution Guide
Distro Portal Pages
20 Free Linux Books
Running Linux Under Windows


Older Stories
Saturday 04/06
  • 6 Top Data Analysis Tools for Big Data (0)

    • Wednesday 04/03
  • 7 Search Engines for Big Data (0)

    • Friday 03/29
  • 7 More Top eCommerce Software (0)

    • Saturday 03/23
  • Top 4 Linux Diary Software (0)

    • Friday 03/22
  • 4 Best Free CoffeeScript Books (0)

    • Sunday 03/17
  • 9 Best Free JavaScript Books (0)
  • 9 Best Free Haskell Books (0)
  • 4 Free HTML Books (0)

    • Friday 03/08
  • 6 Top Free C# Books (0)

    • Saturday 03/02
  • 6 of the Best Free SQL Books (0)


    • Vote

    What do you find MOST attractive about Open Source software?

    Amount of customization
    Security
    Freedom provided
    Speed of development
    Quality
    Multiple versions
    Cost
    Potential to contribute
    Ability to modify code
    Results
    4052 votes | 2 comments
    About | Donate | FAQ | Press Releases | Privacy | Awards | Contact
    Built with GeekLog and phpBB
    Comments to the webmaster are welcome
    Copyright 2009 LinuxLinks.com - All rights reserved