As everybody knows on January 12, a 7.0 magnitude earthquake struck Haiti.
The People of Haiti need our help.
For that reason we want to donate our all 2010 Adsense revenue to a charity NGO helping Haiti.

Thank you for your support.

Stefano Fratepietro
DEFT Project Manager

DEFT Linux v5x is ready for download! I’m so sorry for the delay, in this weeks i was very busy and was very difficult for me found time for implement Xplico into DEFT system.

The goal of Xplico is extract from an internet traffic capture the applications data contained.
For example, from a pcap file Xplico extracts each email (POP, IMAP, and SMTP protocols), all HTTP contents, each VoIP call (SIP), FTP, TFTP, and so on. Xplico isn’t a network protocol analyzer. Xplico is an open source Network Forensic Analysis Tool (NFAT).

What’s new:

• Xplico 0.5.3 DEFT edition using lighthttp web server (more fast of the last version), DNS dissector with graphical representation in Xplico Interface, NNTP dissector, PPPOE dissector, direct live acquisition and bug fix
• Text mode: power save monitor black disable.
• Littles grammar bug fix

DEFT Linux v5x is available for free download (iso file) and usb2 pen marked DEFT Linux available for only 15 € (special price for law enforcement, contact us for more information).

Special thanks to Gianluca Costa and Xplico team.

Screenshot page

The last release of DEFT system is the new challenge that the team has agreed upon.

DEFT Linux v5 is based on the new Xubuntu Kernel 2.6.31 (Linux side) and the DEFT Extra 2.0 (Computer Forensic GUI) with the best freeware Windows Computer Forensic tools ; it isn t a customization of Xubuntu like the old version, it is a new concept of Computer Forensic live system that use LXDE as desktop environment and thunar file manager, mount manager as tool for device management, dhash2, guymager, dcfldd, ddrescue and linen as forensic imager tools, sleuthkit 3.01 andvautopsy 2.21 as landmark for the disk forensic, nessus 4 as security scanner and much more like:

• an advanced file and directory researcher
• foremost, scalpel and photorec carving tools
• a complete support for the most used file systems
• a complete support for logical volume manager
• a complate support for afflib and ewflib support
• a very powerful tools for network forensic as Xplico, wireshark, kismet, ettercap and nmap
• a very powerful tool for identify file type from their binary signatures (TrID)
• the last version of ophcrack, the password cracker based on rainbow tables and john the ripper password cracker
• chkrootkit, rkhunter and exploit scanner
• clam 4.15 virus scanner
• steganography detection software as outgess
• tool for screenshot as take screen shot and video screen capture as record my desktop
• deft-mount script for mount device in read only

For a complete list, please visit the package list page.

There are two DEFT Linux v5 release, one dedicated to disk forensic (DEFT v5) and one dedicated to network and cell forensic (DEFT Vx5); DEFT Vx5 contain Xplico – they will be released next week.

DEFT Linux v5 is available for free download (iso file) and usb2 pen marked DEFT Linux available for only 15 € (special price for law enforcement, contact us for more information).

IISFA appreciates DEFT project as a contribution to the development of the Computer Forensic analysis. The appreciation of IISFA is both scientific and cultural. The project is the work of the DEFT team and not of the association. If bugs are detected, please use the support forum or email bug@deftlinux.net

Special thanks to the people who worked with me: Massimiliano Dal Cero, Salvo Tarantino, Sandro Rossetti, Valerio Leomporra and Davide Gabrini. Thank you guys!

Enjoy DEFT Linux v5

DEFT was recovers ext3/4 file systems during the boot process and this modifies the data on suspect media including at least one important file system timestamp. This bug is fixed thanks to user “forensics” in DEFT Forum support. There isn’t problem with system using ext3/4 where the computer was shutdown using the default procedures.

This is the post: http://www.deftlinux.net/forum/viewtopic.php?f=13&t=20

DEFT v4.2.1 is ready for Download