The CAINE (Desktop Aided INinvestigative Environment) is an open source Live USB / DVD based on the operating system GNU / Linux.
It was created by Italian Giancarlo Giustini within a computer forensics project.
The current manager of CAINE is Nanni Bassetti.
The CAINE provides the user with an integrated graphical environment integrating existing software to be used as tools in 4 stages of forensic research.
This environment is user-friendly and has semi-automatic processes for documenting and compiling reports.
It also has technology Write Block both at the software and hardware level thus ensuring that the device to analysis has not been changed resulting in the data to be extracted being unquestionable.
CINE's main tools dealing with digital forensics
- Abiword Text editor.
- Autopsy Graphical Command-Line Environment of the Digital Research Analysis Tool Sleuth Kit . It can analyze Windows and Unix drives as well as system files (NTFS, FAT, UFS1 / 2, Ext2 / 3).
- Afflib (Advanced Forensics Format) It is an extensible open form for storing disk images and forensic metadata.
- AtomicParsley Easy-to-use command line for reading, analyzing and setting metadata in MPEG-4 files.
- Bkhive A tool for extracting the Windows system key used to encrypt the user code segmentation functions.
- Bulk Extractor Wholesale e-mail export and URL.
- Chntpw Reset / Define User Password mechanism if it has a valid Windows NT / 2K / XP / Vista account and other operating systems.
- dos2unix Text File Converter from DOS / MAC to UNIX.
- Ddrescue Data recovery tool even in case of reading errors.
- Dvdisaster It stores data on CD / DVD / BD so that it is fully retrievable even in cases of reading errors.
- FKLook Script which does search for a keyword in multiple files and stores only those in which the keyword was found in a directory of the user's choice.
- Fatback Program to recover files from FAT system files.
- Cookie Cookie forensic analysis tool Internet Explorer. It analyzes the information contained in a cookie file and outputs the results in such a way that they are usable in a spreadsheet program. (eg Microsoft Excel)
- HDSentinel It monitors the physical condition and temperature of the hard drive and is responsible for testing, repairing, and forecasting errors. Prevents data loss using automatic and scheduled backups.
- Rifiuti-Rifiuti2 Forensic analysis tool of Recycle Bin. Analyzes the information contained in an INFO2 file and outputs the results in such a way that they are usable in a spreadsheet program. (eg Microsoft Excel). refiuos2 is an updated version that allows non-Latin characters to be read and supports the '$Recycle.Bin' of Vista and Windows 2008 and can also export the results to XML.
- TheSleuthKit A collection of tools based on the UNIX command line that allows the analysis of a computer.
(MD5)
Bouncer-Cookbook @ Wikibooks
