Language Selection

English French German Italian Portuguese Spanish

Linux forensics - Part 1: Helix

Filed under

In this article, we will introduce and review Helix, a vastly powerful Linux forensics distribution. Helix is a live Linux CD carefully tailored for incident response, system investigation and analysis, data recovery, and security auditing. It is geared toward experienced users and system administrators working in small-to-medium, mixed environments where threats of data loss and security breaches are high.

The most recent version is based on Ubuntu, promising stability and ease of use. Helix has two modes, including pure Linux bootable live CD and the Windows mode, where it can be used in-vivo on top of a running Windows desktop.

Helix is available for download by email registration. We tested version 3 here.

Now, let's see what Helix can offer us.

Linux mode

As said, Helix comes as a live CD, allowing you to use it on a "suspect" machine with its native operating system dormant. It also makes Helix quite useful for network neighborhood auditing, by being able to run from just about any machine on the segment.

rest here

More in Tux Machines

Cinnamon 2.8.6 Desktop Environment Is Out for Linux Mint 17.3 "Rosa"

The developers behind the popular Cinnamon open-source desktop environment, a fork of the GNOME Shell user interface of the acclaimed GNOME 3 desktop environment, have released a new maintenance build for the Cinnamon 2.8 series. Read more

KDE Plasma 5.5

  • KDE Plasma 5.5 Windows 8 Metro-Inspired Theme Looks Interesting
    KDE developer Kai Uwe has just published a lengthy article where he talks about developing a Windows 8-inspired theme for the upcoming KDE Plasma 5.5 desktop environment.
  • KDE Developer Working On Windows 8 Inspired Look
    Kai Uwe has been working on some experimental hacks to resemble Windows 8, although Microsoft's default interface has changed with Windows 10. He's calling this work "U-Bahn" (the German equivalent of a Metro subsystem system) in reference to Microsoft at the time calling it Metro. This was just some brief hacking and he's not planning to see this U-Bahn project through to the end.
  • Pursuing Awesomeness
    While applets can be installed through “Get Hot New Stuff” and distribution repositories, there’s also the classic .plasmoid file. A feature suggested by one of my colleagues – fresh KDE Plasma user – was to drag .plasmoid files onto the desktop or panel and have them installed. After Marco Martin implemented the neccessary KPackage plumbing this is now possible.

Security Leftovers

Leftovers: Gaming