Print this page. Recommend
Slashdot it! Delicious Share on Facebook Tweet! Digg

Investigating Windows systems with Linux

WINDOW KIT

Author(s): HANS-PETER MERKEL AND MARKUS FEILNER

A forensics expert explains how to extract interesting details from a confiscated Windows hard disk using standard Linux tools.

Criminals, intruders, and corporate saboteurs leave data behind on the hard disks of any computers they visit. Many of these computers are Windows systems, but you don’t need Windows to extract valuable forensic information from a Windows hard disk. In this article, I will describe some simple techniques for getting forensic data from a Windows disk using Linux.


Read full article as PDF »


Comments


Print this page. Recommend
Slashdot it! Delicious Share on Facebook Tweet! Digg
Related Articles
LIVING WITH VISTA Windows in the world of Linux
ON THE DISK Accessing NTFS partitions in Linux
HOME RADIO Streaming audio with Icecast and MuSE
BOOT POLISHING Putting Linux and Windows on a single hard disk
PRACTICAL WINE Running Windows Programs with the Wine API
LIVING WITH WINDOWS Tools and techniques for Windows integration
Rikki's Open Source Exchange

Stop by Rikki's Open Source Exchange for dispatches from the world of women in open source.

Rikki Kite examines the experience of women across the spectrum of open source –
the people, projects, organizations, events, articles, issues, and news.

more...

 

In the US and Canada, Linux Magazine is known as Linux Pro Magazine.
Entire contents © 2009 [Linux New Media USA, LLC]
Linux New Media web sites:
North America: [Linux Pro Magazine]
UK/Worldwide: [Linux Magazine]
Germany: [Linux-Magazin] [LinuxUser] [EasyLinux] [Linux-Community] [Linux Technical Review]
Eastern Europe: [Linux Magazine Poland] [Linux Community Poland] [Open Source DVD Poland]
International: [Linux Magazine Brazil] [EasyLinux Brazil] [Linux Magazine Spanish]
Corporate: [Linux New Media AG]