About
The goal of this site is to help people who are just starting incident response or looking for different ways of doing things. This blog will be a low volume, but hopefully you will find all the information relevant and helpful.
Tom Webb has over 10 years of experience in IT Administration and Security. Tom started his career working for state law enforcement where he was responsible for network design, implementation and security. At his current employer his primary role includes: Lead Incident Handler and Forensic investigations, Penetration Testing, Vulnerability Management, and Risk Assessments. In these roles, Tom has worked extensively with a variety of operating systems and tools, such as Novell Netware, Linux, OS X, Snort, Juniper, Cisco, Checkpoint, and numerous open source forensic and incident response tools. Webb holds a number of IT industry certifications including numerous GIACs and a CISSP.
Harrie Denkers
August 16, 2010 at 7:47 am
Great looking website with verry interesting information.
We have also a developed a forensic Copy Disk to copy data from computers of suspects. Our main target was, untill a year, Windows based computers. Now we are confronted with lots of apple machines. We now have a problem with the newest copy disk booting up form the last series apple computers. Do you have or know a solution for that problem. In the copy disk is implented kernel 2.6.3.2 (Knoppix 6.2.1). If we boot from the latest generation apple macBook pro it does net reconize the harddisks.
Greatings Harrie Denkers
From the Netherlands.