The CAINE (Computer Aided Investigative Environment) is an open source Live USB / DVD based on the operating system GNU / Linux.
It was created by Italian Giancarlo Giustini within a computer forensics project.
The current manager of CAINE is Nanni Bassetti.
The CAINE provides the user with an integrated graphical environment integrating existing software to be used as tools in 4 stages of forensic research.
This environment is user-friendly and has semi-automatic processes for documenting and compiling reports.
It also has technology Write Block both at software and hardware level, ensuring that the analyzer has not been altered, resulting in the data being exported being unchallenged.
CINE's main tools dealing with digital forensics
- Abiword Program processingof text.
- Autopsy Graphical Command-Line Environment of the Digital Research Analysis Tool Sleuth Kit . It can analyze Windows and Unix disks as well archives system (NTFS, FAT, UFS1/2, Ext2/3).
- Afflib (Advanced Forensics Format) It is an extensible open form for storing disk images and forensic metadata.
- AtomicParsley Easy-to-use command line for reading, analyzing and setting metadata in MPEG-4 files.
- Bkhive A tool for extracting the Windows system key used to encrypt the user code segmentation functions.
- Bulk Extractor Wholesale e-mail export and URL.
- Chntpw User password reset/set mechanism if valid account on Windows NT/2K/XP/Vista and other operating systems.
- dos2unix Text File Converter from DOS / MAC to UNIX.
- Ddrescue Data recovery tool even in case of reading errors.
- Dvdisaster It stores data on CD / DVD / BD so that it is fully retrievable even in cases of reading errors.
- FKLook Script that searches for a keyword in multiple files and only stores those in which the keyword was found in a directory of the user's choice.
- Fatback Program to recover files from FAT system files.
- Cookie Internet Explorer cookie forensic analysis tool. He analyzes them information which contains a cookie file and outputs the results in such a way that they are usable in a spreadsheet program. (eg Microsoft Excel)
- HDSentinel It monitors the physical condition and temperature of the hard drive and is responsible for testing, repairing, and forecasting errors. Prevents data loss using automatic and scheduled backups.
- Rifiuti-Rifiuti2 Forensic analysis tool of Recycle Bin. Analyzes the information contained in an INFO2 file and outputs the results in such a way that they are usable in a spreadsheet program. (eg Microsoft Excel). refiuos2 is an updated version that allows non-Latin characters to be read and supports the '$Recycle.Bin' of Vista and Windows 2008 and can also export the results to XML.
- TheSleuthKit A collection of tools based on the UNIX command line that allows the analysis of a computer.
(MD5)
Bouncer-Cookbook @ Wikibooks