Sumuri Paladin 7 Forensics Suite Basic Usage - NETSEC

Latest

Learning, Sharing, Creating

Cybersecurity Memo

Sunday, July 8, 2018

Sumuri Paladin 7 Forensics Suite Basic Usage

PALADIN is a bootable forensic Linux distribution based on Ubuntu and is developed and provided as a courtesy by SUMURI. The boot process has been modified to assure that the internal or external media of computers and devices are not modified or mounted. PALADIN is available as an ISO which can be used to make a bootable DVD or USB. Once booted, the user will find a host of pre-compiled open-source forensic tools that can be used to perform various tasks.


Boot Sumuri Paladin Live Session into Forensics Mode:
1_forensic_mode
Boot Screen

3._forensic_toolbox
Paladin Desktop


2._forensic_tools
Forensics Apps

Execute a forensic copy of USB disk:
4._clone_device
Paladin Toolbox Imager
Mount external USB Disk into Paladin:
6._mount-r

After completed the imaging action, task logs tab will show generated forensic image MD5 and SHA1 hashes.


7._Files_on_new_driver


Later, you can set up search criteria to search your evidence in the mounted image. 
8._search


More details, please check YouTube video about Paladin Installation and Basic Usage Video:















No comments:

Post a Comment