The CAINE (Computer Aided Investigative Environment) is an open source Live USB / DVD based on the operating system GNU / Linux.
It was created by Italian Giancarlo Giustini within a computer forensics project.
The current manager of CAINE is Nanni Bassetti.
The CAINE provides the user with an integrated graphical environment integrating existing software to be used as tools in 4 stages of forensic research.
This environment is user-friendly and has semi-automatic processes for documenting and compiling reports.
It also has technology Write Block both at software and hardware level, ensuring that the analyzer has not been altered, resulting in the data being exported being unchallenged.
CINE's main tools dealing with digital forensics
- Abiword Program processingof text.
- Autopsy Graphical environment of the line orders of his digital research analysis tool Sleuth Kit . It can analyze Windows and Unix drives as well as system files (NTFS, FAT, UFS1 / 2, Ext2 / 3).
- Afflib (Advanced Forensics format) It is an extensible open form for storing disk images and forensic metadata.
- AtomicParsley Easy-to-use command line for reading, analyzing and setting metadata in MPEG-4 files.
- Bkhive A tool for extracting the Windows system key used to encrypt the user code segmentation functions.
- Bulk Extractor Wholesale e-mail export and URL.
- Chntpw Reset / Define User Password mechanism if it has a valid Windows NT / 2K / XP / Vista account and other operating systems.
- dos2unix Text File Converter from DOS / MAC to UNIX.
- Ddrescue Data recovery tool even in case of reading errors.
- Dvdisaster It stores data on CD / DVD / BD so that it is fully retrievable even in cases of reading errors.
- FKLook Script that searches for a keyword in multiple files and only stores those in which the keyword was found in a directory of the user's choice.
- Fatback Πρόγραμμα για την ανάκτηση files απο αρχεία συστήματος τύπου FAT.
- Cookie Forensic Analysis Tool for Internet Explorer Cookies. It analyzes the information contained in a cookie file and extracts the results in such a way that they are usable in a spreadsheet program. (eg Microsoft Excel)
- HDSentinel It monitors the physical condition and temperature of the hard drive and is responsible for testing, repairing, and forecasting errors. Prevents data loss using automatic and scheduled backups.
- Rifiuti-Rifiuti2 Recycle Bin Forensic Analysis Tool. Analyzes the information contained in an INFO2 file and outputs the results in such a way that they are usable in a spreadsheet program. (eg Microsoft Excel). refiuos2 is an updated version that allows non-Latin characters to be read and supports Vista and Windows 2008's '$Recycle.Bin' and can also export the results to XML.
- TheSleuthKit A collection of tools based on the UNIX command line that allows the analysis of a computer.
(MD5)
Bouncer-Cookbook @ Wikibooks
