This Page contains various programs I have used throughout the Winter 2013 semester at BYU taking IT 566 – Cyber Forensics. Pages will include a source link, an overview of the software, and a brief T3CHKOMMIE review covering pros, cons, and caveats.
- Steganography with OpenPuff
- Autopsy 3.0.4 for Windows
- Network Miner
- Netcat: Unix, Linux, Windows command line tool for passing forensic evidence from the victim machine to the forensics device for later analysis
- Netstat (-an) (-ltp): Windows and Linux command line tool for displaying tcp and udp ports open, listening, or connected on the victim’s network stack and the processes owning the ports.
- Linux Bash Command: lsof displays amazing amount of important details on the File System.
- pstree: Linux command that displays a “family tree” of running processes and their children.