PaulDotCom mailing list archives

Previous By Date Next
Previous By Thread Next

Forensic File Analysis

From: polarism at gmail.com (Chris Gerling)
Date: Wed, 10 Dec 2008 19:22:23 -0500
That was me and the program used to make the .dd vmware-friendly is  
live view.  The cool part is the image.dd is never directly modified,  
well at least that's the claim :).  Haven't checked yet myself.  I  
like it as a quick dirty analysis but it should not be substituted for  
in depth analysis.

-Chris Gerling

On Dec 10, 2008, at 5:49 PM, infolookup at gmail.com wrote:


I saw an ep of Hak5 and the discussed using Helix forensics disk to  
make an image of the system and you can mount that image in vmware  
for viewing.
Sent from my Verizon Wireless BlackBerry

-----Original Message-----
From: "Kevin Shortt" <kevin.shortt at gmail.com>

Date: Wed, 10 Dec 2008 16:30:25
To: <pauldotcom at pdc-mail.pauldotcom.com>
Subject: [Pauldotcom] Forensic File Analysis


_______________________________________________
Pauldotcom mailing list
Pauldotcom at mail.pauldotcom.com
http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom
Main Web Site: http://pauldotcom.com

_______________________________________________
Pauldotcom mailing list
Pauldotcom at mail.pauldotcom.com
http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom
Main Web Site: http://pauldotcom.com
Previous By Date Next
Previous By Thread Next

Current thread: