The following security advisory is sent to the securiteam mailing list, and can
be found at the SecuriTeam web site: http://www.securiteam.com
- - promotion
The SecuriTeam alerts list - Free, Accurate, Independent.
Get your security news from a reliable source.
http://www.securiteam.com/mailinglist.html
- - - - - - - - -
Live View - VMWare and Forensics Join Forces
------------------------------------------------------------------------
SUMMARY
DETAILS
Live View is a Java-based graphical forensics tool that creates a VMware
virtual machine out of a raw (dd-style) disk image or physical disk. This
allows the forensic examiner to "boot up" the image or disk and gain an
interactive, user-level perspective of the environment, all without
modifying the underlying image or disk. Because all changes made to the
disk are written to a separate file, the examiner can instantly revert all
of his or her changes back to the original pristine state of the disk. The
end result is that one need not create extra "throw away" copies of the
disk or image to create the virtual machine.
ADDITIONAL INFORMATION
The information has been provided by Carnegie Mellon University.
To keep updated with the tool visit the project's homepage at:
<http://liveview.sourceforge.net/> http://liveview.sourceforge.net/
========================================
This bulletin is sent to members of the SecuriTeam mailing list.
To unsubscribe from the list, send mail with an empty subject line and body to:
list-unsubscribe@securiteam.com
In order to subscribe to the mailing list, simply forward this email to:
list-subscribe@securiteam.com
====================
====================
DISCLAIMER:
The information in this bulletin is provided "AS IS" without warranty of any
kind.
In no event shall we be liable for any damages whatsoever including direct,
indirect, incidental, consequential, loss of business profits or special
damages.
