Join Us!

Suggestions for new...
 
Notifications
Clear all

Suggestions for new hardware or software  

  RSS
ebmetric
(@ebmetric)
New Member

Hello,

At this point I've decided to upgrade my software and/or hardware equipment for forensics.
Mainly at my work I focus on acquisition of all type of data from computers and servers.

Right now from hardware I have TABLEAU TX1, T8u and T35u.
And from software Belka Evidence Center 9, EnCase v8, Autopsy, R-Studio, OSForensics.

Maybe someone could suggest what could I additionally buy for my tasks?

P.S. I have lately encountered problems in cases where are I have servers with RAID configuration, maybe someone can suggest software/hardware for RAID server imaging and rebuilding.

Thanks.

Quote
Posted : 25/05/2018 11:01 am
mcman
(@mcman)
Active Member

F-Response for logical RAID acquisitions and live servers you can't shut down is a nice one to have IMO. Allows you to do it over the network and avoid dealing with RAID issues or servers that the client won't let you shut down. A little slower over the wire but could be helpful based on what you have.

Jamie

ReplyQuote
Posted : 25/05/2018 1:52 pm
Igor_Michailov
(@igor_michailov)
Senior Member

Creating a digital forensic laboratory Tips and Tricks
https://www.digitalforensics.com/blog/creating-a-digital-forensic-laboratory-tips-and-tricks/

ReplyQuote
Posted : 25/05/2018 3:35 pm
tracedf
(@tracedf)
Active Member

What kinds of cases are you handling? Do you do mobile at all? What are your current limitations?

Are you unhappy with any of your current tools and looking for a replacement or are you just looking to add something?

I use AXIOM as my primary application for most cases and supplement that with a variety of free and inexpensive tools. Tableau for write blocking. I use Autopsy occasionally and Forensic Explorer for a second perspective when I'm analyzing Windows.

ReplyQuote
Posted : 26/05/2018 3:07 am
ebmetric
(@ebmetric)
New Member

Thank You all for your time.

Jamie, definitely will check F-Response for RAID imaging.

What kinds of cases are you handling? Do you do mobile at all? What are your current limitations?

Are you unhappy with any of your current tools and looking for a replacement or are you just looking to add something?

I use AXIOM as my primary application for most cases and supplement that with a variety of free and inexpensive tools. Tableau for write blocking. I use Autopsy occasionally and Forensic Explorer for a second perspective when I'm analyzing Windows.

As I said previous "Mainly at my work I focus on acquisition of all type of data from computers and servers." I don't work with mobile phones.

About limitations, I have encountered few problems when task requires to acquire data from servers running with RAID configuration.

And am I disappointed/unhappy with tools/software. No everything is great I just look to add something new.

ReplyQuote
Posted : 28/05/2018 7:08 am
Share: