- This topic has 5 replies, 6 voices, and was last updated 9 years, 4 months ago by .
- You must be logged in to reply to this topic.
I work in computer forensics and I am newbie in Linux, (despite search and study a lot).
However in my Office, we want to develop a “Live CD” – Ubuntu based – for forensic purposes.
One of the main objectives of the CD is to be “forensically sound”, eg, none of the devices on the target system should be mounted RW, RO instead.
My question is:
-Can we start from “Ububtu Live CD”, install on it some forensic apps, change the boot system and burn all with changes to a new CD?
If so, what we must change in order to ensure that the CD will be “forensically sound”?
Will be that there are batch scripts for this purpose?
Any help is welcome
Thanks in advance and best regards,
It’s called remastering, I know the Knoppix Hacks book had a section on how to remaster Knoppix for your needs. It was Debain based at the time like Ubuntu, so the theory should carry you.
There are several other options to do that too…
Examples of Remastered versions of Ububuntu:
I’m sure there are others.
Do you need to make one specifically or can you just use one already out there, there are many.
I’ve heard good things about Sleuth Kit and Helix3. That would sure save you a ton of time if you could just use one of those!
– EH-Net Live! Thurs Oct 29 @ 1:00 PM US ET. Details Coming Soon!
– EH-Net Live! Sept – Video & Deck Available Now! for “Android Hacking Proving Ground!” w/ Kyle Benac from Sept 24.
– EH-Net Live! Aug – Video & Deck Available Now! for “TryHackMe – Behind the Curtain” w/ Ben Spring and Ashu Savani from Aug 27.
– EH-Net Live! June – Video & Deck Available Now! for “CISO Underrepresented” w/ Mark Arnold and Steph Ihezukwu from June 30.
– EH-Net Live! May – Video & Deck Available Now! for “Bad As You Want To Be – Adversary Emulation Basics” w/ Jake Williams from May 28.
See all EH-Net Live! Videos
More on the EH-Net YouTube Channel
There are no upcoming events at this time.
Copyright ©2021 Caendra, Inc.