SMART
| | ||
SMART is the only commercial Linux forensic suite available today. Written by ASRdata and found at http://www.asrdata.com, SMART performs all of the common forensic tasks that the other products, such as EnCase do, but additionally gives you the power of the Linux operating system. When an image is accessed through SMART, it can be mounted as a local file system and browsed and searched with all of the open -source tools available to the investigator .
Implementation
To image a drive in SMART, follow these steps:
-
Power down the Linux system.
-
Attach the suspect drive to the Linux system.
-
Power up the Linux system.
-
Load SMART.
-
Choose the device you want to acquire; then right-click it and choose Acquire, as shown here:
-
In the Acquire window, select the number of copies of the device you want to make and the hashing algorithm you would like to use. As shown next , one copy will be made using the MD5 hashing algorithm.
-
Click the Image 1 tab and type the name of the image and its description. Now click the area next to Save Data To and choose the directory where this data should be stored, as shown next.
-
Click Okay and the imaging begins.
| | ||
EAN: 2147483647
Pages: 175
- Key #1: Delight Your Customers with Speed and Quality
- When Companies Start Using Lean Six Sigma
- Making Improvements That Last: An Illustrated Guide to DMAIC and the Lean Six Sigma Toolkit
- The Experience of Making Improvements: What Its Like to Work on Lean Six Sigma Projects
- Six Things Managers Must Do: How to Support Lean Six Sigma