Windows Incident Forensics with Knoppix Helix
Daehenoc writes "After finding Windows Forensics and Incident Recovery while looking around for forensics tools, I found this instead: Helix Incident Response and Forensics. It's a customized version of Knoppix which you can use in an online or offline style - put it in when Windows is running and you can retrieve a stack of useful information and send it to a network share. Or boot a suspect system with the CD and get access to useful forensics tools like sleuthkit!"
This is a wonderful idea, especially for minorities who are often uneducated about computer security and unable to afford the pricey name brand AV suites. These people, who often lack the experience and the computer literacy to avoid virus infestations, could really benefit from a free and easy to use AV suite. Many complications with virus removal stem from the virus' interference with the anti-viral software, so having a seperate OS boot up to deal with them is a great idea.
Open source projects and their potential applications are really one of our greatest hopes for brining minority populations up to the level of everyone else, in terms of computer intelligence.
+ Donald Gunth
+ Email: dgunth@quicktek.net
"Caffeine is the greatest lubricant ever created." -ESR