Skip Navigation Linkslive-response

軟體資訊>應用軟​體​​

​​

Live Response 數位鑑識工具

​​live-response0.jpg

Live Responses 是 USB Key,用於調查人員和 IT 安全專業人員來即時收集揮發性數據,那是一但電腦關閉後就會消失的數據。

只需要插入 USB Key 並指示系統取得你想要的資訊類型,在短短幾分鐘內就可以獲取那些揮發性的數據。

可收集的資訊類型包含以下:

  • Physical memory
  • Network connections, open TCP or UDP ports, NetBIOS
  • Currently logged on user / user accounts
  • Current executing processes and services
  • Scheduled jobs
  • Windows registry
  • Browser auto-completion data, passwords
  • Screen capture
  • Chat logs
  • Windows SAM files / NTUser.dat files
  • System logs
  • Installed applications and drives
  • Environment variables
  • Internet history​
live-response1.jpg

------------------------------------------------------------------------------------------------------------------------------

​​​