ZeroAccess rootkit kills security software

ZeroAccess – an advanced kernel mode rootkit 직접다운받기

DCode 다양한 타임스탬프에서 날짜/시간값 계산하는 도구 http://www.digital-detective.net/digital-forensic-software/free-tools/ 다운로드 하단의 회색 Download버튼 클릭 실행화면 직접다운로드

openports.exe 시스템 프로세스와 함께 모든 오픈된 TCP와 UDP 포드 정보 출력 C:\forensics\ToolSuite>openports.exe /? OpenPorts - DiamondCS Console Tools (www.diamondcs.com.au) --- PURPOSE: Displays information about all TCP/UDP ports. USAGE: openports.exe [-lines] [-path] [-netstat / -fport / -csv] FLAGS: [no flags] Standard display (default options used) -lines Adds lines between processes for easier viewing -path Proc..

HuntSMB share enumerator and admin finder command not updated http://www.foundstone.com version 2.0 직접 다운로드

Guide to Integrating Forensic Techniques into Incident Response Table of Contents Executive Summary..................ES-1 1. Introduction.........................1-1 1.1 Authority......................1-1 1.2 Purpose and Scope.....1-1 1.3 Audience.....................1-1 1.4 Publication Structure...1-2 2. Establishing and Organizing a Forensics Capability.............2-1 2.1 The Need for Forensi..