Difference between revisions of "Help Documents"

From SleuthKitWiki
Jump to: navigation, search
(Added cygwin doc.)
m (Rearranged content a little.)
Line 4: Line 4:
 
* [[TSK Tool Overview]]
 
* [[TSK Tool Overview]]
  
== Big Picture ==
+
== General Locations ==
This section contains links to articles on using The Sleuth Kit as a whole (i.e. the articles are not about a specific tool).  
+
This section lists locations where relevant documents may be found.  
 
* [http://www.sleuthkit.org/informer/ The Sleuth Kit Informer (www.sleuthkit.org)] newsletter (no longer active)
 
* [http://www.sleuthkit.org/informer/ The Sleuth Kit Informer (www.sleuthkit.org)] newsletter (no longer active)
 
* [http://www.sleuthkit.org/sleuthkit/docs.php Sleuth Kit Documents Page (www.sleuthkit.org)]
 
* [http://www.sleuthkit.org/sleuthkit/docs.php Sleuth Kit Documents Page (www.sleuthkit.org)]
 
* [http://www.sleuthkit.org/autopsy/docs.php Autopsy Documents Page (www.sleuthkit.org)]
 
* [http://www.sleuthkit.org/autopsy/docs.php Autopsy Documents Page (www.sleuthkit.org)]
* [http://www.linuxleo.com/ Law Enforcement and Forensic Examiner Introduction to Linux: A Beginner's Guide]. Barry Grundy. 2003. NASA.
 
 
* [http://www.giac.org/ GIAC Reports] - Look at the reports that people submitted for their GIAC certification. There are quite a few if you search for 'sleuth' or 'autopsy'.
 
* [http://www.giac.org/ GIAC Reports] - Look at the reports that people submitted for their GIAC certification. There are quite a few if you search for 'sleuth' or 'autopsy'.
 +
 +
== Big Picture ==
 +
This section contains links to articles on using The Sleuth Kit as a whole (i.e. the articles are not about a specific tool).
 +
* [http://www.linuxleo.com/ Law Enforcement and Forensic Examiner Introduction to Linux: A Beginner's Guide]. Barry Grundy. 2003. NASA.
 
* [http://www.cyberguardians.org/docs/ForensicsSheet.pdf CyberGuardians Cheat Sheet]: 2-page PDF with sample commands for a variety of common TSK activities.  Useful for veteran analysts who want to quickly look up a forgotten flag, or for a beginner looking to learn by example and experimentation.
 
* [http://www.cyberguardians.org/docs/ForensicsSheet.pdf CyberGuardians Cheat Sheet]: 2-page PDF with sample commands for a variety of common TSK activities.  Useful for veteran analysts who want to quickly look up a forgotten flag, or for a beginner looking to learn by example and experimentation.
 
* [http://www.memophage.net/Running_Sleuthkit_and_Autopsy_Under_Windows.pdf Running Sleuthkit and Autopsy Under Windows]  by Charles Lucas ([http://www.sleuthkit.org/sleuthkit/docs/lucas_cygwin_v1.2.pdf local copy])
 
* [http://www.memophage.net/Running_Sleuthkit_and_Autopsy_Under_Windows.pdf Running Sleuthkit and Autopsy Under Windows]  by Charles Lucas ([http://www.sleuthkit.org/sleuthkit/docs/lucas_cygwin_v1.2.pdf local copy])
* [[Licenses]]
 
  
 
== Specific Topics ==
 
== Specific Topics ==

Revision as of 06:42, 12 September 2008

This page contains links and references to online help documents on The Sleuth Kit and Autopsy. The Books and Courses on TSK page contains links to books and courses.

English Documents

General Locations

This section lists locations where relevant documents may be found.

Big Picture

This section contains links to articles on using The Sleuth Kit as a whole (i.e. the articles are not about a specific tool).

Specific Topics

This section contains links to articles on specific topics that may not be specific to a specific tool.

Non-English Documents