Forensicswiki.org has moved to this site, forensicswiki.xyz. For information, please join the Google Group forensicswiki-reborn

Live CD

From Forensics Wiki

Jump to navigation Jump to search

Please help to improve this article by expanding it.
Further information might be found on the discussion page.

A live CD is a CD containing a bootable computer operating system. Live CDs are widely used in computer forensics and incident response.

Advantages

Physical memory of a computer can be imaged by performing cold boot attack without running tools on an untrusted OS;
Acquisition over a network connection without running tools on an untrusted OS;
No need to reconstruct RAID arrays;
etc.

Disadvantages

Out-of-date software;
No simple way to reconfigure Live CD: you cannot easily rebuild foo to support bar (e.g. rebuild Sleuthkit to support AFF).

See Also

Retrieved from "https://forensicswiki.xyz/wiki/index.php?title=Live_CD&oldid=6310"

Articles that need to be expanded

Navigation menu