CAINE 11 – GNU/Linux Live Distribution

CAINE or Computer Aided INvestigative Environment is an Italian GNU/Linux live distribution created as a Digital Forensics project. Currently, the project manager is Nanni Bassetti (Bari – Italy).

It offers a complete forensic environment that is organized to integrate existing software tools as software modules and to provide a friendly graphical interface.

The main design objectives that CAINE aims to guarantee are the following:

  • An interoperable environment that supports the digital investigator during the four phases of the digital investigation
  • A user-friendly graphical interface
  • User-friendly tools

CAINE represents fully the spirit of the Open Source philosophy because the project is completely open, everyone could take on the legacy of the previous developer or project manager.

The distro is open source, the Windows side is freeware and, the last but not least, the distro is installable, thus giving the opportunity to rebuild it in a new brand version.

The important news is CAINE 11.0 blocks all the block devices (e.g. /dev/sda), in Read-Only mode. You can use a tool with a GUI named BlockON/OFF present on CAINE’s Desktop.

This new write-blocking method assures all disks are really preserved from accidentally writing operations, because they are locked in Read-Only mode.

  • If you need to write a disk, you can unlock it with BlockOn/Off or using “Mounter” changing the policy in writable mode.
  • CAINE is always more fast during the boot.
  • CAINE 11.0 can boot to RAM (toram).

Also Read – AntiDisposmail : Detecting Disposable Email Addresses

Important Feature Changes

  • All devices are blocked in Read-Only mode, by default.
  • New tools, new OSINT, Autopsy 4.13 onboard, APFS ready,BTRFS forensic tool, NVME SSD drivers ready!
  • SSH server disabled by default (see Manual page for enabling it).
  • SCRCPY – screen your android device
  • Autopsy 4.13 + additional plugins by McKinnon.
  • X11VNC Server – to control CAINE remotely.
  • Hashcat
  • NEW SCRIPTS (Forensics Tools – Analysis menu)
  • AutoMacTc – a forensics tool for Mac.
  • Bitlocker – volatility plugin
  • Autotimeliner – Automatically extract forensic timeline from volatile memory dumps.
  • Firmwalker – firmware analyzer.
  • CDQR – Cold Disk Quick Response tool
  • Many others fixing and software updating.
Download
R K

Share
Published by
R K
Tags: CAINECAINE 11linux
5 years ago

Recent Posts

Starship : Revolutionizing Terminal Experiences Across Shells

Starship is a powerful, minimal, and highly customizable cross-shell prompt designed to enhance the terminal…

1 day ago

Lemmy : A Decentralized Link Aggregator And Forum For The Fediverse

Lemmy is an innovative, open-source platform designed for link aggregation and discussion, providing a decentralized…

1 day ago

Massive UX Improvements, Custom Disassemblers, And MSVC Support In ImHex v1.37.0

The latest release of ImHex v1.37.0 introduces a host of exciting features and improvements, enhancing…

2 days ago

Ghauri : A Powerful SQL Injection Detection And Exploitation Tool

Ghauri is a cutting-edge, cross-platform tool designed to automate the detection and exploitation of SQL…

2 days ago

Writing Tools : Revolutionizing The Art Of Writing

Writing tools have become indispensable for individuals looking to enhance their writing efficiency, accuracy, and…

2 days ago

PatchWerk : A Tool For Cleaning NTDLL Syscall Stubs

PatchWerk is a proof-of-concept (PoC) tool designed to clean NTDLL syscall stubs by patching syscall…

2 days ago