搜索资源列表
FU_Rootkit
- hide processes, elevate process privileges, fake out the Windows Event Viewer so that forensics is impossible, and even hide device drivers (NEW!) All this without any hooking.
X-Ways-forensics-readme
- 计算机取证界的权威软件X-Ways forensics的中文使用帮助,在网上很难找到的,chm格式
毕业论文_Windows下取证研究
- 论文从计算机取证角度出发,详细研究操作系统内核、入侵与反入侵策略、网络监测技术、系统分析技术等。用软件工程的方法,设计实现适合于Windows NT/2000/XP操作系统下的计算机取证软件-papers from the perspective of Computer Forensics, a detailed study operating system kernel, the invasion and the anti-invasion strategy, network monitori
Oreilly.iPhone.Forensics
- 本书是关于iPhone编程的学习,因为是一个概论,所以我选择开发环境为CHM-This book is a must for anyone attempting to examine the iPhone. The level of forensic detail is excellent. If only all guides to forensics were written with this clarity!
fw
- 算机取证界的权威软件X-Ways forensics的中文使用帮助,在网上很难找到的,chm格式-Computer forensics software, an authority on X-Ways forensics Chinese use the help of the Internet is very difficult to find, chm format- forensics software, an authority on X-Ways forensics Chinese us
ssdeep-2.2
- 计算机文本进行hash计算,来判断文件间的相似性,用于计算机取证方向-Computer text hash calculation to determine the similarity between documents, for the direction of computer forensics
WinHex_15.4_SR-5
- WinHex_15.4 SR-5专业二进制文件编辑软件同时也是数据恢复的强有力抓手-WinHex is in its core a universal hexadecimal editor, particularly helpful in the realm of computer forensics, data recovery, low-level data processing, and IT security. An advanced tool for everyday an
COFEE-ORIGINAL-TORRENT
- COFEE全称为“计算机在线法庭科学证据提取器(Computer Online Forensic Evidence Extractor)”,是一款微软免费提供给国际刑警组织使用的证据提取工具,微软是这样描述的COFEE的:“有了COFEE,没有合适的计算机取证能力的执法机构可以轻松、可靠而且高效地收集现场证据。一个只有最基础的计算机知识的人也可以在不超过10分钟的时间里学会如何使用配置好的COFEE设备,执法人员可以像专家一样收集重要的犯罪证据,其复杂程度就像将USB插入计算机那样。”-COFE
Digital-Forensics
- I wrote simple article about Digital Forensics in Electronics for You megazine. This is primer for digital forensics concepts.
Digital-Image-Forensics-report
- tamper detection-pdf
forensic-and-anti-forensic--
- 取证与反取证 计算机取证就是运用软件技术和工具,照预定的步骤检查计算机系统和相关外部设备,保护、提取和分析计算机犯罪的痕迹,并产生具有法律效力的电子证据的过程。 反取证就是删除或者隐藏证据使取证调查无效。 -Forensics and anti-forensics Computer Forensics is the use of software technology and tools, according to the predetermined steps to check
rootkit
- 新Rootkit取证技术的原理及方法 新Rootkit取证技术的设计与实现-The Design and Implementation of the principles and methods of the new the Rootkit forensics technology new Rootkit forensic technology
WpdPack_4_1_beta4
- WpdPack是WinPcap的开发包,提供了使用WinPcap必须的头文件和库文件,现阶段开始SendPkt使用的是WinPcap 3.1及其对应的WpdPack。随着网络入侵的不断发展,网络安全变得越来越重要,于是网络入侵取证系统的研究也变得日益重要。在网络入侵取证系统中,对网络上传送的数据包进行有效的监听即捕获包是目前取证的关键技术,只有进行高效的数据包捕获,网络管理员才能对所捕获的数据进行一系列的分析,从而进行可靠的网络安全管理。-WpdPack is WinPcap developme
surf
- surf算法对图像的配准实时的取证,经本人验证,该程序好用无误,可放心使用-surf algorithm for image registration in real time forensics, after I verify that the correct program easy to use, ease of use
surf1
- surf特征点提取与匹配,该算法能达到实时性的要求,不仅能用于两幅图的匹配,还能用于单幅图的复制粘贴取证-surf feature point extraction and matching, this algorithm can achieve real-time requirements, not only for the two graph matching, but also for single figure copy and paste forensics
ImageForensics-master
- source code for image forensics
WinHex-v17.9-SR-2
- WinHex - is a universal hexadecimal editor, particularly helpful in the realm of computer forensics, data recovery, low-level data processing, and IT security. An advanced tool for everyday and emergency use: inspect and edit all kinds of files, reco
CameraFingerprint_1.0
- 利用PRNU的图像指纹识别算法,可用于进行图像认证,来源辨别等。主要用于数字图像取证方面。-PRNU image use fingerprint recognition algorithm, can be used for image authentication, and other sources to identify. Mainly used for digital image forensics.
sdhash-3.4
- 用于数字取证技术的主流方法之一 非常方便(One of the mainstream methods used for digital forensics is very convenient.)
计算机安全检查取证系统
- 计算机安全检查取证系统,安全取证工具,强大(Computer security inspection forensics system, security forensics tools, powerful)