This suite of tools includes various tools used in corporate and government investigations and security risk reviews. It is popular in classified government agencies. Several of the tools are DoD certified.
The Computer Incident Response Suite includes the following:
CopyQM - A U. S. DoD tested and certified floppy diskette duplication tool that is used to create duplicates of frequently used floppy diskettes in incident responses.
CRCMd5 - A CRC file hashing program that validates the contents of one or more files.
DiskScrub - A U. S. DoD tested and certified hard disk drive scrubbing utility used to securely eliminate all data.
DiskSig Pro - A CRC hashing tool that is used to validate mirror image backup accuracy. This tool is also used to inventory all of the partitions/operating systems on a computer hard disk drive.
FileList Pro - A hard disk and floppy diskette cataloging tool used to evaluate computer usage time lines.
Filter_G - A patented intelligent fuzzy logic filter used with windows swap/page files and other ambient data sources to identify English language communications.
Filter_I - A forensic filter used to eliminate binary data and control characters from ambient data sources.
Filter_N - An intelligent fuzzy logic filter used to identify data patterns associated with credit card numbers, social security numbers, phone numbers and bank account numbers.
GetFree - A U. S. DoD tested and certified ambient data collection tool used to capture unallocated (erased file) data.
GetHTML - An intelligent fuzzy logic filter that is used to quickly identify patterns of HTML in ambient data sources.
GetSlack - A U. S. DoD tested and certified ambient data collection tool used to capture file slack for analysis.
GetTime - A program used to document the CMOS system time and date on a computer seized as evidence.
Graphics Image File Extractor - An ambient data collection tool which quickly and automatically reconstructs previously BMP, GIF and JPG files in cases involving the inappropriate (or illegal) download or viewing of pornography on the Internet.
HexSearch - A forensic hex search utility that is used to find binary data patterns associated with file headers and foreign language data patterns.
NTA Stealth - A patented forensic software tool which is used to quickly identify internet account uses and abuses.
NTA Viewer - An analysis and reporting tool for use with NTI's patented Net Threat Analyzer software.
M-Sweep - A U. S. DoD tested and certified ambient data security scrubbing utility.
SafeBack 3.0 - A program which is used to create an evidence grade bit stream backup of a computer hard disk drive, zip disk or flash memory card.
Seized - A program used to lock and secure evidence computers.
TextSearch Plus - A U. S. DoD tested and certified text search utility which is used to conduct searches on DOS, Windows 95 and Windows 98-based computer systems. This tool is used in computer-related investigations and in computer security risk reviews.
TextSearch NT - A U. S. DoD tested and certified text search utility which is used to conduct searches on Windows NT, Windows 2000 and Windows XP-based computer systems. This tool is used in computer-related investigations and in computer security risk reviews.
The following are the purchasing options for Computer Incident Response Pro Suite. If you require a formal quote, choose one or more products and click on the ""Create an Online Quote"" link at the bottom.
Customers who bought Computer Incident Response Pro Suite also looked for these solutions from LOGON :-