PenTestIT Tools

We are planning to develop open source tools. This is to give back to the community which has given us so much of knowledge!

1. PPF Live DVD : PenTestIT Potable Forensics Live DVD:
This is a collaboration of forensic live CDs. As of now, it contains:
- Raptor:
Raptor is a modified Live Linux CD used to forensically image digital media. Two versions of Raptor exist. One for Intel based computers and the other for the older Macintosh PowerPC architecture. Raptor allows the user to mount, image, hash, format and sterilize digital media in a forensically sound manner. Raptor can image to FAT32, NTFS, HFS+ and EXT3 file systems as either a .E01, DD (raw image), .DMG (Macintosh disk image file) format or even physical device (clone). Raptor also allows for two forensic images to be created simultaneously. Best of all . . . no need to access the command-line or know complicated Linux commands or switches.
- DEFT (Digital Evidence & Forensic Toolkit)
DEFT (Digital Evidence & Forensic Toolkit) is a customised distribution of the Xubuntu live Linux CD. It is an easy-to-use system that includes excellent hardware detection and some of the best open-source applications dedicated to incident response and computer forensics.
- Helix v3
Helix is a forensics and incident response Live CD based on the Knoppix distribution. It also contains a number of tools useful in a Windows environment. One of the most popular forensic Live CDs.

We are planning to add more forensic live DVD’s in the coming months. Which might include,
- FCCU:
Its main purpose is to create image copies of devices before analyze. FCCU GNU/Linux does not use a lot of cpu cycles for unnecessary programs, that is why it drops you to a shell right after the boot. To enter in X, you just have to type startx command. FCCU GNU/Linux recognizes lots of hardware and it leaves the target devices unaltered (It does not use the swap partitions found on the devices). The latest version of FCCU GNU/Linux is based on KNOPPIX 4.0
- GRML:
Grml is a bootable live system (Live-CD) based on Debian. Grml includes a collection of GNU/Linux software especially for system administrators and users of texttools. Grml provides automatic hardware detection. You can use Grml (for example) as a rescue system, for analyzing systems/networks or as a working environment. It is not necessary to install anything to a harddisk; you don’t even need a harddisk to run it. Due to on-the-fly decompression Grml includes about 2.1 GB of software and documentation on the CD. You don’t have to pay anything to use Grml – it is available for free!

We have hosted the code on SourceForge and Google code.

You can download it Here