Join Us!

Encase Enterprise o...
 
Notifications
Clear all

Encase Enterprise or AccessData Enterprise?  

  RSS
bobby1041
(@bobby1041)
New Member

Anyone using AccessData Enterprise? If so, what do you think of it and what's the pricing of it? I know of the major issues they have had in the past year am wondering if the Enterprise version of AD suffered from the issues also?

Do the people using EnCase Enterprise recommend it? Are you satisfied with it?

I'm looking for an enterprise product, because we have about 3 examiners geographically dispersed and our locations are dispersed across the US and a few overseas.

Thanks in advance,
Bobby Bradshaw

Quote
Posted : 02/04/2009 9:16 pm
keydet89
(@keydet89)
Community Legend

F-Response EE is just under $5K, allows for unlimited remote systems, and has been recommended on the EnCase user forums over EEE (not by me…by others).

Take a look at it…

ReplyQuote
Posted : 02/04/2009 10:13 pm
bshavers
(@bshavers)
Active Member

I second that motion. If you have the budget for one of those other enterprise editions, you could instead set up 3 full forensic labs for your examiners with lots of goodies like F-Response EE and still have money left over (and be able to do just about the same thing using F-Response, if not a few things more).

ReplyQuote
Posted : 02/04/2009 10:49 pm
PeterMer
(@petermer)
New Member

I vote for F-response over the other 2 products - you can use other forensic software with it, not just the enterprise vendors, well supported and truly brilliant.

If I had no choice and had to take either EE or ADE, it would be EE based on maturity and stability.

Peter M

ReplyQuote
Posted : 09/04/2009 3:10 am
bshavers
(@bshavers)
Active Member

1 F-Response EE dongle + XWF dongle + 1 Grande Mocha Everyday for a Year = handles the majority of what you need for way less than $10K.

ReplyQuote
Posted : 09/04/2009 4:35 am
seanmcl
(@seanmcl)
Senior Member

I wholeheartedly agree with the others recommending F-Response EE. It is one of the most well-designed products that I have ever used, is vendor neutral and I've tested with X-Ways, EnCase and FTK and the only problems that I encountered turned out to be related to Microsoft Windows configuration, not the F-Response software, itsef.

There are target implementations for Windows, OS X and Linux and I am told that others are in the works. I recently did a test acquisition of a number of remote computers over the Internet using an SSL VPN and F-Response and it worked, flawlessly.

I strongly recommend it and you can get a 30-day fully functioning dongle which supports all of their technologies for a little more than $100.

ReplyQuote
Posted : 09/04/2009 6:57 pm
ibusoe
(@ibusoe)
New Member

F-response is good. I've used EEE before…it's buggy and expensive.

ReplyQuote
Posted : 09/04/2009 10:09 pm
bobby1041
(@bobby1041)
New Member

The problem I'm having right now with F-Response is that it does not keep audit logs of the activity and the network connections are not encrypted. Those two things are important in a corporate environment.

ReplyQuote
Posted : 10/04/2009 2:13 am
keydet89
(@keydet89)
Community Legend

Bobby,

I can see needing encryption over the Internet…well, maybe not.

What are the technical reasons for encryption in a corporate environment?

With respect to audit logs…that's what documentation is for. F-Response EE allows you do do things, but doesn't actually do them for you. For example, you can connect to a remote system and run RegRipper, which *does* keep audit logs.

Thanks,

ReplyQuote
Posted : 10/04/2009 5:14 am
Share: