BIOS
UEFI
Data in Motion
IPsec - Internet Protocol Security - good for internal network traffic
Timeline:
SSL2.0 - 1995 - 2011 Deprecated by IETF
SSL3.0 - 1996 - 2015 Deprecated by IETF
TLS1.0 - 1999 - old not secure - don't use
TLS1.1 -
TLS1.2 -
TLS1.3 - currently in draft (2019)
Preparing
preserving
Acquiring
FTK Imager
To capture contents of memory:
Volatility - designed to view memory dumps
Analysis
Autopsy - open source
Open Stego - Stenography tool
Indexing / Pre-Processing - like creating an index for a book
windows.github.com to install application
create new repository on github.com
copy URL from clone or download button
open terminal
cd into Documents
git clone <url copied from webiste>
make a new file, like index.html, save
git status to see what has changed
git add index.html - to add it to the github repository
git status to see what has changed
git commit -m "added index.html" - committed, but only on my machine, not on github.com yet.
git push, type username and password
git add -A - add all files in folder
If commit without a message, get stuck in weird screen. To get out:
esc : wq
md5sum content.txt
SHA - more secure than MD5
SHA1, 2, 3
Name | Latest version
Raspbian | Buster
Ubuntu | 18.04.3 LTS
./ = current directory
dcfldd - Forensics version of dd
sudo dcfldd if=/dev/sdb of=usb_image.dd hash=md5 hashlog=usb_image.log
dd - backup data, make disk drive image?
dd if=/dev/sdb of=./usb_image.dd
dd if=/dev/sdb
To split into multiple image files:
sudo dd if=/dev/sdb | split -b 650m - usb_image.
ls - lists files in current directory
-l - lists attributes of those files
more usb_image.log to see the md5 hash value of the file
Nano commands
ctrl+x, y - to save file
Net Cat (NC)
sudo fdisk -l (lowercase L) | grep -i dev
umount - to un-mount the drive
if it does not auto-mount
mkdir usb_mounted
ls
sudo mount -t vfat /dev/sdb1 ./usb_mounted
cd usb_mounted
ls
Turn off UPnP