CAINE 3.0 review

A couple of the forensics applications are bash scripts that must be run from a shell terminal, while the rest have graphical interfaces. There is, for example, AIR (Automated Image & Rescue), which is actually a graphical frontend for dd and dc3dd. dd id a file converter and copier, while dc3dd is dd enhanced with features for digital forensics – on-the-fly hashing, split output files, pattern writing, progress meter, and file verification. The main interface of AIR is shown below.
Caine AIR

Another interesting application in CAINE 3 is Autopsy, a browser interface to the command-line tools available in The Sleuth Kit (TSK). TSK, designed for investigative analysis of disk images, is powerful stuff, and there is a version called Sleuth Kit Hadoop, which integrates TSK into a Hadoop cluster. It was initially funded by the US Army Intelligence Center of Excellence (USAICoE).

These applications may be accessed individually, or you can use a graphical application called Caine interface, which provides a single-hop interface for using the installed forensic applications. The next five screen shots show the windows of the Caine interface:

This is the main interface. Pressing Create Report prompts you for authentication.
Caine

Upon successful authentication, you then see this:
Caine Interface

The Collection tab.
Caine Interface

Analysis tab.
Caine Interface

Report tab.
Caine Reports

Aside from the Caine interface, all the other applications are already in the repository of your favorite distribution, but the Caine interface just makes the distribution a lot easier to use for what it is designed for. So like BackTrack, CAINE is one of those distributions you might want to dual-boot with your regular distribution on an external drive or install in a virtual environment, if you are interested in digital forensics.

Resources: You may download a 32-bit installation image of CAINE 3 from here (there is no 64-bit installation image). A complete list of applications, both forensics-specific and standard, installed on CAINE 3, is available here.

Screen Shots: More screen shots from a test installation of CAINE 3.0.

CAINE 3’s GRUB menu.
Caine 3 GRUB Menu

The default CAINE 3.0 MATE desktop
Caine 3 MATE Desktop

The desktop with the menu showing installed applications in the System Tools category.
Caine 3 Desktop

Firefox is the only installed application in the Internet category.
Caine 3 Desktop

The desktop with the menu showing installed graphics applications.
Caine 3 Desktop

Related Posts

Linpus Lite Desktop 1.6 review Linpus Lite is a Linux distribution published by Linpus Technologies, Inc., a Linux software solutions provider based in Taiwan. Linpus Lite Desktop i...
Chakra GNU/Linux Edn 2011.12 review Chakra Edn 2011.12 is the third and final edition of the Chakra Edn line of Chakra, a desktop GNU/Linux distribution based on Arch Linux. The first tw...
BackBox Linux 4.4 review BackBox Linux is a distribution that provides the best penetration testing, incident response, computer forensics, and intelligence gathering applicat...
Mandriva Desktop 2011 pre-release screenshot review The last of the pre-releases of Mandriva Desktop 2011, Mandriva Desktop 2011 RC 2, was made available for download yesterday, just one day behind sche...
Pardus 2011.1 review Pardus is a Linux distribution developed in Turkey. To be specific, it is developed and maintained by the Turkish National Research Institute of Elect...
Kubuntu 14.10 review The last time I reviewed a Kubuntu release was back in November 2011 and that was Kubuntu 11.10 (see Kubuntu 11.10 review). For a Linux distributio...

We Recommend These Vendors and Free Offers

Launch an SSD VPS in Europe, USA, Asia & Australia on Vultr's KVM-based Cloud platform starting at $5:00/month (15 GB SSD, 768 MB of RAM).

Deploy an SSD Cloud server in 55 seconds on DigitalOcean. Built for developers and starting at $5:00/month (20 GB SSD, 512 MB of RAM).

Want to become an expert ethical hacker and penetration tester? Request your free video training course of Online Penetration Testing and Ethical Hacking

Whether you're new to Linux or are a Linux guru, you can learn a lot more about the Linux kernel by requesting your free ebook of Linux Kernel In A Nutshell.


One Comment

  1. First;
    “It is now a project of Digital Forensics for Inter-department Center for Research on Security (CRIS) at the same university.”

    It’s not true…since 2009 I’m the project manager as you can read in Caine’s website everywhere http://www.caine-live.net

    And….a forensic distro like Caine is not only an Ubuntu filled of many forensic tools…there are many patches for avoiding the changes to attached devices, as the forensic best practices suggest…write blocking etc.

    Thank you for your review and have a nice day 😉

Leave a Comment

Your email address will not be published. Required fields are marked *

*