Abstract
Current distributions of open source forensic software provide digital investigators with a large set of heterogeneous tools. Their use is not always focused on the target and requires high technical expertise. We present a new GNU/Linux live distribution, named CAINE (Computer Aided INvestigative Environment) that contains a collection of tools wrapped up into a user friendly environment. The CAINE forensic framework introduces novel important features, aimed at filling the interoperability gap across different forensic tools. Moreover, it provides a homogeneous graphical interface that drives digital investigators during the acquisition and analysis of electronic evidence, and it offers a semi-automatic mechanism for the creation of the final report.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
Notes
- 1.
“If security is to be taken seriously, only those operating systems should be used, whose source code has been published and checked, since only then can it be determined with certainty what happens to the data.” Temporary Committee on the ECHELON Interception System. European Parliament, 4 May 2001.
References
US Department of Justice (2001) Electronic Crime Scene Investigation: A Guide for First Responders. US Department of Justice
US Department of Justice (2004) Forensic Examination of Digital Evidence: A Guide for Law Enforcement. US Department of Justice
Carvey H (2207) Perl Scripting for Windows Security: Live Response, Forensic Analysis, and Monitoring. Syngress Publishing Inc.
Lacouture PV (1996) Discovery and the use of computer-based information in litigation. Rhode Island Bar Journal
Carrier B (2005) File System Forensic Analysis. Addison Wesley Professional
Solomon MG, Barrett D, Broom N (2005) Computer Forensics JumpStart. Sybex
Walsh N, Muellner L. (2007) DocBook 5.0: The Definitive Guide. O’Reilly
Chamberlain D, Cross D, Wardley A (2003) Perl Template Toolkit. O’Reilly
Foy BD, Phoenix T, Schwartz RL (2005) Learning Perl, 4th Edition. O’Reilly
Nagler R (2004) Extreme Programming in Perl. Robert Nagler
International Association of Chiefs of Police Advisory Committee for Police Investigative Operations (2005) Best Practices for Seizing Electronic Evidence. PricewaterhouseCoopers LLP
Nolan R, O’Sullivan C, Branson J, Waits C (2005) First Responders Guide to Computer Forensics. CERT Training and Education
The Internet Crime Complaint Center (2007) 2006 Internet Fraud Crime Report. National White Collar Crime Center & FBI
Computer Crime and Intellectual Property Section - Criminal Division (2002) Searching and Seizing Computers and Obtaining Electronic Evidence in Criminal Investigations. US Department of Justice
Geiger M, Cranor LF (2005) Counter-Forensic Privacy Tools - A Forensic Evaluation. Carnegie Mellon University
Gleason BJ, Fahey D (2006) Helix 1.7 for Beginners. http://www.e-fense.com/
FBI: Computer Analysis and Response Team (2007) http://www.fbi.gov/hq/lab/org/cart.htm.
Robbins J (2007) An Explanation of Computer Forensics. http://www.computerforensics.net/forensics.htm.
Richard Ford R (2007) Open vs. Closed: Which Source is More Secure? ACM Queue, February 2007
Hiong GS (2004) Open source vs commercial apps: the differences that matter. ZDNet Asia, October 2004
The Sleuth Kit. http://www.sleuthkit.org/.
Honeynet. http://www.honeynet.org/scans/scan24/.
DEFT v3. http://deft.yourside.it/
Helix Live CD. http://www.e-fense.com/helix/
FCCU GNU/Linux Forensic Boot CD. http://www.lnx4n6.be/
EnCase Forensic. http://www.guidancesoftware.com/
Forensic Toolkit. http://www.accessdata.com/Products/ftk2test.aspx.
Foremost. http://foremost.sourceforge.net/
Scalpel: A Frugal, High Performance File Carver. http://www.digitalforensicssolutions.com/Scalpel/
Author information
Authors and Affiliations
Corresponding author
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2010 Springer Science+Business Media, LLC
About this paper
Cite this paper
Giustini, G., Andreolini, M., Colajanni, M. (2010). Open Source Live Distributions for Computer Forensics. In: Huebner, E., Zanero, S. (eds) Open Source Software for Digital Forensics. Springer, Boston, MA. https://doi.org/10.1007/978-1-4419-5803-7_5
Download citation
DOI: https://doi.org/10.1007/978-1-4419-5803-7_5
Published:
Publisher Name: Springer, Boston, MA
Print ISBN: 978-1-4419-5802-0
Online ISBN: 978-1-4419-5803-7
eBook Packages: Computer ScienceComputer Science (R0)