content top

Another delay….!

Unfortunately they are forced to postpone the release of deft further 10 days. The core is ready, but the graphics not jet.

Really sorry for this!

Stefano

Read More

DART 2 beta ready for download

While we are working hard on the DEFT 8 Beta and the new layout of the DEFT site, We hope that the release of the standalone DART 2BETA can make you a little happier.
We think that DART 2 is one of the most advanced toolkit for Live Forensics and Incident Response analysis ( Actually we think that is the most advanced one but it doesn’t matter :-) ). With its huge number of freely distributable tools (as stated in their license), DART 2 is the ideal suite that allows the operator to run a lot of applications in almost total safety.
These are some of the DART2 new main features:

– Even more powerful internal engine,
– More than 200 stand alone tools
– Tool Search Engine by keyword or file name
– Better categories management system
– Auto Copy&paste of the XML configuration’s hash

Please let us know about any bug or malfunctions you may find by posting it on our forum or by e-mail: bug@deftlinux.net

Download DART 2 beta, NOW!

Read More

Delay!

Ciao,

many of you are asking why DEFT8 has not been released yet. It ‘s true, you’re right and we apologize for that. Several unforeseen problems about the development and implementation of new features are slowing down this release.
We changed the roadmap and we plan to release DEFT 8 beta no later than May 31. A stable version will follow no later than mid-June. DART 2 is ready!

Thank you again for your patience and cooperation.

Stefano

Read More

Road to DEFT 7.2 and more

In these hot weeks of August we are implementing changes and enhancements for DEFT 7.2, but there’s more. DEFT 7 will be the last release for 32-bit systems. From release 8, DEFT will be release only for 64-bit systems for obvious reasons of performance. DEFT 7 will still be kept up to date just for the needs of task to be performed on 32-bit obsolate systems.

The release of the 7.2 is planned for September 2012.

Below you up to date on some hot topics in abeyance, such as:

  • The English manual is still in the process of translation, we are about 60-70% of the work completed.
  • The new DEFT website is under construction, we hope to release by the end of 2012. It will be available both in English and in Italian.
  • Since 2012, the DEFT project will become a non-profit organization based in Bologna, Italy. The opening of a non-profit organization will allow us to manage funds, donations and revenues to invest fully in the DEFT project that will always remain open source and free.
Stay tuned!
Read More

DEFT Pen ready for download

Hello!
Valerio Leomporra created two dd images of a DEFT USB Pen, one for device with 2GB and one for 4GB.

If you tried to build your own DEFT v7.x USB pendrive starting from ISO, by using some Windows automated tools (i.e. UNetbootin, PenDriveLinux tools or whatever), most probably you should have realized it won’t boot correctly.
While this approach is quite easly effective with many other Linux distros, it simply doesn’t work with the latest DEFT live.

This is mainly due to the huge compressed filesystem (squashfs), which is directly loop-mounted from the media at boot time: loopback files should be contigous and unfragmented.
Even the large number of DART files and directories could fragment/damage the FAT16/FAT32 USB partition, if not carefully managed.

That’s why we realized and just published an “official” pendrive dd-image series, ready to download and flash to your favorite USB device.

Minimal requirements:
– a working linux system (DeftLinux Live on ISO is excellent :D)
– a USB pendrive device, 4gb recommended / 2Gb minimal (deprecated, DART’s few tools included)

Instructions:
1) download the needed .dd.gz file from mirrors, to a working linux machine:
75c0cecce7a549db945704672ef5c935 * DeftPen_v710-usb_4gb.dd.gz
ba4af8c7972a2a91dd418af6aa7f84ab * DeftPen_v710-usb_2gb.dd.gz (deprecated)

2) verify hashes, decompress, verify again  (large files, twice is better):
md5sum *.dd.gz; gzip -d *.dd.gz; md5sum *.dd

3) plug your USB device, ensure it is NOT mounted in your system

4) write down it’s device name, i.e. /dev/sdx  (please notice there isn’t any trailing number)

5) flash your device:
dd if=DeftPen_v710-usb_?gb.dd of=/dev/sdx ; sync

6) reboot the system to test the your new pendrive  :)

Lastly, if confident with the forensic tools, you can also do anything via a single line:
gzip -dc DeftPen_v710-usb_?gb.dd.gz | dcfldd hash=md5 of=/dev/sdx ; sync

Read More

DEFT 7.1 ready for download

Hi People,
Many of you may have noticed that the deft 7.1 ISO is online since March, 30 without any public announcement. We apologize for that: we were all engaged in the organization of deftcon Conference 2012 held in Turin 2012. It was a great success: over 200 people actively participated to the event!
The new features for deft 7.1 are:

Bug Fix:
Hb4most and xterm’s problem fixed
Gparted

Updated packages:
libewf-20120304
bulk_extractor-1.2.0.tar.gz
guymager 0.6.5-1
iPhone Backup Analyzer 10/2012
Xplico 1.0

Computer Forensics side new tools:
UsnJrnl-parser
lslnk

New implementations
After the great work done by Emanuele Gentili and Sandro Rossetti, we are delighted to introduce you the Cyber ​​Intelligence side implementations and we’d like to remember you today there is no other freely distributed system that allows you to perform Intelligence tasks:

OSINT
– “OSINT Chrome browser”: we customized Chrome with several plugins and resources to perform ‘Open Source Intelligence’ related activities,

Network Information Gathering
– Host
– Nslookup
– Dig
– Nmap
– Zenmap
– Netcat
– Snmpcheck
– Nbtscan
– Cadaver
– Traceroute
– Hping3
– Xprobe
– Scapy
– Netdiscover

Wireless Information Gathering
– Kismet

Web Application Information Gathering
– Whatweb
– Cmsident
– Dirbuster
– Burpsuite
– Customized Chrome Browser (at least 1gb ram required)

Social Information Gathering
– Creepy
– Snmpcheck
– PieSpy
– Irssi

Identity Protection Tools
– TOR-Browser
– Anonymouse (http://anonymouse.org/anonwww.html)

OSINT Global Framework
– Maltego
– Proactive Resources

Please Enjoy DEFT 7.1 at least as much as we love to keep it running! :D

Read More
content top