http://groups.google.com/group/forensicideas In the ForensicIdeas discussion group you will be able to discuss product issues, request features, beta test our new software and discuss computer forensics topics. 2009-09-28T13:23:32Z Google Groups dtabone dtab...@gmail.com 2009-09-28T13:23:32Z http://groups.google.com/group/forensicideas/browse_thread/thread/88758e547692b400/48bc6dbec797b46c?show_docid=48bc6dbec797b46c

Clonezilla is free hard drive cloning software for taking a snapshot <br> of a system and reverting back to it later as a backup or to get <br> things the way you once liked them. <br> <p>Full article.. <a target="_blank" rel=nofollow href="http://www.makeuseof.com/tag/free-advanced-hard-drive-cloning-solution-from-clonezilla/">[link]</a>

Max maxime.spam...@gmail.com 2009-08-05T09:00:55Z http://groups.google.com/group/forensicideas/browse_thread/thread/ef177da7567025d6/285875eedd4081fd?show_docid=285875eedd4081fd

Look this up (Tor network) <br> <p><a target="_blank" rel=nofollow href="https://wiki.torproject.org/noreply/TheOnionRouter/TorFAQ#CanIcontrolwhatnodesIuseforentry.2BAC8-exit.2Corwhatcountrythenodesarein.3F">[link]</a>

OC exsesiv...@sbcglobal.net 2009-08-05T04:41:59Z http://groups.google.com/group/forensicideas/browse_thread/thread/ef177da7567025d6/e99772b44aa7d4e6?show_docid=e99772b44aa7d4e6

I'm not sure if this is 100% possible but I would like to take a <br> dynamic IP address and identify it as being generated on a server that <br> only services a certain area. I used to work for a telephony company <br> and we could do that with long distance calls tracing the trunks they <br> use to go back to the orginal PED. I need to be able to trace a known

christ...@mycash2u.info 2009-06-18T12:16:29Z http://groups.google.com/group/forensicideas/browse_thread/thread/37e73371e93268f6/6e22b2b1989fb57e?show_docid=6e22b2b1989fb57e

Hey All, <br> I have recently joined this group. How is everyone? <br> Thanks

Stefan Engelbert ste...@engelbert.de 2009-05-08T10:06:06Z http://groups.google.com/group/forensicideas/browse_thread/thread/21d10cace3e6da78/00d8ad7f1e6f5e3c?show_docid=00d8ad7f1e6f5e3c

Hi, <br> <p>thanks for the deteailed list :-) <br> <p>I agree with the keys stored on the computer. In fact software certificates <br> are always a theoretical risk. That's why smartcards should be used. <br> <p>Regarding Network transfers, temp files etc. That I do have to agree. In <br> fact when using EFS such points have to be considered.

Jeremy Pullicino pullic...@gmail.com 2009-05-08T09:56:53Z http://groups.google.com/group/forensicideas/browse_thread/thread/21d10cace3e6da78/70b8d438f03e9133?show_docid=70b8d438f03e9133

EFS is inherently flawed... <br> <p>- EFS keys are stored on the computer, with physical access to the system <br> the enemy can retrieve them and decrypt the files <br> - EFS keys are automatically loaded and used when the user logs on; with <br> physcial access retrieving the login password is trivial, so th enemy can

Stefan Engelbert ste...@engelbert.de 2009-05-07T16:28:27Z http://groups.google.com/group/forensicideas/browse_thread/thread/af826adbe330c223/5197d1fb73500c2c?show_docid=5197d1fb73500c2c

Why is EFS not a good idea? <br> <p>On Behalf Of Jeremy Pullicino <br> Sent: Thursday, May 07, 2009 4:14 PM <br> To: ForensicIdeas@googlegroups.com <br> <p>Hi, <br> <p>My 2 euro cents worth... <br> <p>These methods assume you have physical access to the system - passwords do a <br> good job of protecting access via the network/internet.

Jeremy Pullicino pullic...@gmail.com 2009-05-07T14:14:23Z http://groups.google.com/group/forensicideas/browse_thread/thread/af826adbe330c223/c85740883dad2faf?show_docid=c85740883dad2faf

Hi, <br> <p>My 2 euro cents worth... <br> <p>These methods assume you have physical access to the system - passwords do a <br> good job of protecting access via the network/internet. <br> <p>When your 'enemy' has physical access to the system there is very little you <br> can do - if he wants he can steal your hard disk, or even destroy the

Israel Torres vfenrygbe...@gmail.com 2009-05-06T14:01:46Z http://groups.google.com/group/forensicideas/browse_thread/thread/af826adbe330c223/dbf3afae1dbf4dfe?show_docid=dbf3afae1dbf4dfe

Novice? Hacker? Hardly... <br> I frequently set up penetration challenges for my sons (ages 10/12) to build <br> their skill set. They figured this out a year or two ago with the plethora <br> of bootable SAM rt/crackers out there that slice through the system from 10 <br> seconds to 30 minutes depending on which technique is applied.

liusiguang liusigu...@gmail.com 2009-05-06T13:12:23Z http://groups.google.com/group/forensicideas/browse_thread/thread/af826adbe330c223/81ef124de48ab3fa?show_docid=81ef124de48ab3fa

I usually stay out of these discussions, however... <br> <p>Let me ask you this - do you lock your house when you leave? your car? <br> Probably not, even though it is simple to bypass either. The <br> information is out there and if you apply enough energy, you can <br> acquire that information. <br> <p>Assuming your answer to the above questions was &quot;No&quot;, let's examine

Geoffrey Alexander h1ever1b...@hotmail.com 2009-05-06T12:56:03Z http://groups.google.com/group/forensicideas/browse_thread/thread/af826adbe330c223/e9eb148cbd2f8e16?show_docid=e9eb148cbd2f8e16

If by-passing or cracking Windows passwords is as easy as this, why bother setting them up at all? <br> <p>Am I the only one to conclude that even a novice 'hacker' could access any 'password-protected' computer? <br> - Geoffrey. <br> <p>To: forensicideas@googlegroups.com <br> <p>If you are able to Login using the GUEST ACCOUNT; you can then run this keyfinder:

M. Storm mindstorm...@hotmail.com 2009-05-02T02:28:00Z http://groups.google.com/group/forensicideas/browse_thread/thread/af826adbe330c223/3991b02dfa630c89?show_docid=3991b02dfa630c89

If you are able to Login using the GUEST ACCOUNT; you can then run this keyfinder: <br> <p><a target="_blank" rel=nofollow href="http://downloads.sourceforge.net/keyfinder/keyfinder.2.0.1.z­">[link]</a>ip?use_mirror=osdn <br> <p>If you do not have a guest account available then this software will allow you to blank the admin password: <br> <p><a target="_blank" rel=nofollow href="http://home.eunet.no/pnordahl/ntpasswd/">[link]</a>

dsoftware demonic.softw...@gmail.com 2009-05-01T16:02:49Z http://groups.google.com/group/forensicideas/browse_thread/thread/af826adbe330c223/773553262edeb22c?show_docid=773553262edeb22c

Is it possible that the Admin Password is blank?

amy hyche amyde...@live.com 2009-04-30T19:24:43Z http://groups.google.com/group/forensicideas/browse_thread/thread/af826adbe330c223/51da9a750e82cc14?show_docid=51da9a750e82cc14

I think someone has been on my laptop. I have a desk top I use most of the time, the laptop is mostly for use when I'm out of town. Mysteriously, I cannot locate the windows cd, which I thought was in a locked file drawer, in my home office, and I don't remember creating a backup disk. There is a new user account I don't remember creating, or have access to. But my orignal password works, but I don't remember the admin-password, so that's why I was wondering if someone could bypass, or somehow retrieve my windows password without changing it.

Geoffrey Alexander h1ever1b...@hotmail.com 2009-04-29T22:48:40Z http://groups.google.com/group/forensicideas/browse_thread/thread/af826adbe330c223/b281d4f6f6da59bf?show_docid=b281d4f6f6da59bf

According to this search result, iOpus Password Recovery should do the trick: <br> <p>iopus.com/password_recovery.ht m <br> <p>There are other tools too: <br> <p>loginrecovery.com <br> windowspasswordforgot.com <br> <p>about.com: <br> Ophcrack Windows password cracker &quot;is by far the best free Windows password recovery tool available&quot;