Bibliografía
Metodología forense
Computer Forensics: Computer Crime Scene Investigation, John R. Vacca, Charles River Media © 2002 (731 paginas) ISBN:1584500182
An Extended Model of Cybercrime Investigations, de Séamus Ó Ciardhuáin,
International Journal of Digital Evidence Summer 2004, Volume 3, Issue 1
Electronic Crime Scene Investigation: A guide for first responders, U.S. Department of Justice
Report F**rom the First Digital Forensic Research Workshop(DFRWS**),
Agosto de 2001, Utica, New Cork
- An Examination of Digital Forensic Models, de Mark Reith, Clint Carr, Gregg
Gunsch, International Journal of Digital Evidence Fall 2002, Volume 1, Issue 3
Getting Physical with the Digital Investigation Process, de Brian Carrier y Eugene H. Spafford, International Journal of Digital Evidence Fall 2003, Volume 2, Issue 2
Digital Evidence and Computer Crime: Forensic Science, Computers, and the Internet, Segunda edición, por Eoghan Casey, Academic Press 2004, ISBN:0121631044
Legislación
- www.policia.es/bit
Herramientas Software
SMART:http://www.asrdata.com
The BlackBag Macintosh Forensic Software:
http://www.blackbagtech.com/software_mfs.html
MacForensicsLab :http://www.macforensicslab.com/
Forensics Toolkit (FTK):http://www.accessdata.com/products/ftk/[17]ILOOK Investigator:http://www.ilook-forensics.org/
X-Ways Forensics:http://www.x-ways.net/forensics/index-m.html
Pro Discover Forensics:http://www.techpathways.com/ProDiscoverWindows.htm
Foremost:http://foremost.sf.net/
Magic Rescue:http://jbj.rapanden.dk/magicrescue/
Scrounge-Ntfs:http://memberwebs.com/nielsen/software/scrounge/
The Sleuth Kit:http://www.sleuthkit.org/
The Coroner’s Toolkit:http://www.porcupine.org/forensics/tct.html
ZeitLine:http://projects.cerias.purdue.edu/forensics/timeline.php
AntiWord:http://www.winfield.demon.nl/
Catdoc y XLS2CSV:http://www.45.free.net/~vitus/software/catdoc/
VINETTO:http://vinetto.sourceforge.net/[38]Word2x:http://word2x.sourceforge.net/
[39]WvWare:http://wvware.sourceforge.net/[40]XPdf:http://www.foolabs.com/xpdf/[41]Metadata Assistant:
http://www.payneconsulting.com/products/metadataent/
Galleta:http://www.foundstone.com/resources/proddesc/galleta.htm
Pasco:http://www.foundstone.com/resources/proddesc/pasco.htm
Rifiuti:http://www.foundstone.com/resources/proddesc/rifiuti.htm
Yim2Text:http://www.1vs0.com/tools.html
NetIntercept:http://www.sandstorm.net/products/netintercept
Snort:http://www.snort.org/
Tcpdump:http://www.tcpdump.org
Tcpextract:http://tcpxtract.sourceforge.net/
TrueWitness:http://www.nature-soft.com/forensic.html
Etherpeek:http://www.wildpackets.com/products/etherpeek/overview
BringBack:http://www.toolsthatwork.com/
ByteBack DRIS:http://www.toolsthatwork.com
RAID Reconstructor:http://www.runtime.org/raid.htm
Salvation Data:http://www.salvationdata.com
Partition Table Doctor:http://www.ptdd.com/index.htm
Ewfacquire:https://www.uitwisselplatform.nl/projects/libewf/
Adepto (Grab):http://www.e-fense.com/helix/
GNU ddrescue:http://www.gnu.org/software/ddrescue/ddrescue.html
rdd:http://sourceforge.net/projects/rdd[65]Qemu:http://www.qemu.org
VMWare:http://www.vmware.com/
Hex WorkShop:http://www.bpsoft.com
Khexedit:http://docs.kde.org/stable/en/kdeutils/khexedit/index.html
WinHex:www.winhex.com
Lenovo SDD:http://www-
307.ibm.com/pc/support/site.wss/document.do?sitestyle=lenovo&lndocid=MIG R-56394
- Timestomp:
http://www.metasploit.com/projects/antiforensics/timestomp.exe
Creación del CD-Live de Ubuntu
- Cd-Live Ubuntu, HowTo:https://help.ubuntu.com/community/LiveCD
- Ubuntu Live Cd (español):
http://formacion.cnice.mec.es/materiales/43/cd/cap1/maqueta1_frame.htm
Imágenes forenses
- I Reto Forense de Rediris: