|View Issue Details|
|ID||Project||Category||View Status||Date Submitted||Last Update|
|0004228||Kali Linux||[All Projects] New Tool Requests||public||2017-09-06 16:02||2017-09-08 10:04|
|Target Version||Fixed in Version|
|Summary||0004228: Two submissions for forensic automation tools: Automated Image Collector (aic) & The Black Scorme (tbs)|
I have recently completed and packaged two automation tools that I think may fit well with the Kali Live Forensic mode. I have done my best to conform to the Debian packaging & GNU Open-source licensing protocols. The source packages can be found on GitHub here:
Additional info below.
Colby C (Protheophage)
|Steps To Reproduce||Place flags on devices that you want to be ignored by the program. (See included man-pages for more detail.) Attach storage devices. Run programs. Get coffee. Twiddle thumbs. Enjoy!|
|Additional Information||Automated Image Collector (aic) is a tool to automate the process of collecting forensically sound images of storage devices. I designed it with the intent of being used on a live USB to collect images in the field. I have recently made it friendly with hard installed systems. AIC will search for any attached storage devices, catalog them, and image them to a predetermined destination device. Man-pages included for more details.|
The Black Scorme (tbs) is a tool to automate the process of erasing storage devices. TBS will search for, catalog, and write zeros (0) to any attached storage devices.
I have tested both tools with internal drives, external drive bays, and USB bays. However there is, for now, a theoretical limit of 26 devices at one time. This is due to the naming convention for devices (sda, sdb, ...) and the way the tools search for devices. Both tools use DC3DD to accomplish the end goal, and both verify the outcomes with hashing.
|2017-09-06 16:02||Protheophage||New Issue|