CAINE 5 review – Blackhole

CAINE 5 review is a review of the latest edition of CAINE, a Linux distribution designed solely for digital forensics. This edition is code-named Blackhole.

The distribution’s name is derived from Computer Aided INvestigative Environment, and it is an Italian GNU/Linux live distribution, whose development is headed by Nanni Bassetti. The goal of this distribution is to provide an interoperable environment and user-friendly tools for digital forensics.

Hightlights of this release are: Linux Kernel 3.8.0-35, based on the 64-bit version of Ubuntu 12.04.3, has support for UEFI and Restricted Boot, and ships with a new installer called Systemback.

Since the installer is new, let’s start by looking at what it brings to the table.

The Installer: According to the project’s description on Launchpad.net, Systemback is a “simple system backup and restore application with extra features.” And part of that “extra features” is the ability to install a Linux distribution. And that’s just about all the extra it does – install. It cannot be used for disk partitioning. That means another application will have to be used to partition the target hard disk drive (HDD). This screen shot shows the user setup page of the installer, and it is also the first step in the installation process.
CAINE 5 SystemBack installer

This shows the second step. If the target HDD has no partition table, there’s nothing that can be done from here. With regards to handling partitions, it allows formatting, setting mount points, and filesystems.
CAINE 5 SystemBack partition

And this shows the same step with existing partitions on the target HDD. Once the mount points and filesystems have been configured, clicking Next moves the process to the next step.
CAINE 5 SystemBack partition mount points

And this is a screen shot of that next step.
CAINE 5 SystemBack installer progress

No interruption, please.
Install CAINE 5 Blackhole

It takes only a few minutes for the installation to complete. After clicking OK, a manual restart is required to reboot the new system. The installer’s weakness is obviously the inability to handle disk partitioning. That means it does not bring anything new to the table. I wonder why the developers chose it to replace the graphical installer of its parent distribution.
CAINE 5 SystemBack install success

The Desktop: CAINE is a specialist distribution, designed for digital forensics, but a default installation comes with a complete set of applications that you’ll usually find on standard desktop distributions. The desktop environment it uses is MATE. This screen shot shows the login screen. Even with a password set during the installation process, all that’s needed to log in is to just click on that Log in button. I have no idea why the developers configured it for passwordless login by default.
CAINE 5 Login screen

Like I wrote earlier, this is a specialist distribution that comes with a full complement of standard desktop applications by default. And it even contains a better collection of system utilities than many of the popular desktop distributions. In fact, it could be used as a standard desktop distribution. Just ignore the Forensic tools menu category and you won’t even know that it was designed for digital forensic investigators. A default installation takes just around 4.7 GB of disk space. This gallery shows aspects of the default installation that could make it pass easily as a standard desktop distribution.

System Administrative Tools: When it comes to graphical system utilities, not even talking about those designed specifically for digital forensics and those in MATE’s system control center, CAINE 5 ships with the best of them. Systemback, the application used as the installer, is one example. Systemback can’t be used to partition an HDD, but it can be used for several system administrative tasks – from backing up and restoring the system, to using it to create a Live system, upgrading the system, and performing file and full system repair and system upgrades. Systemback can do it all, except partition an HDD. Clicking on the System install button will actually open the first step of the installation process shown in the first screen shot of this review. Systemback looks like one of those applications you want to have on your system, just in case
Systemback on CAINE 5

Related Posts

Parsix 3.0r2 review Parsix is a Linux distribution based on Kanotix and Debian. It is purely a desktop-focused distribution. The last major release was Parsix 3.0r0 (aka ...
Pardus 2011 review Pardus is a desktop-oriented Linux distribution with roots in the National Research Institute of Electronics and Cryptology (UEKAE), Turkey. This arti...
ROSA Desktop Fresh R3 review ROSA Desktop Fresh R3 is the latest edition of the Mandriva-derived Linux distribution from ROSA Laboratories, a Linux software solutions provider bas...
PCLinuxOS 2010 review PCLinuxOS is a APT-ified, Mandriva-based Linux distribution. It's one of those distributions that offer a separate version for virtually every existin...
SalineOS 1.1 review SalineOS is a desktop-oriented distribution based on Debian GNU/Linux, and uses the Xfce desktop environment. The latest stable release is SalineOS 1....
Linux Mint Debian Edition 2 Cinnamon review Linux Mint Debian Edition (LMDE) is a desktop distribution that's based on Debian. It's from the same folks responsible for Linux Mint, which is based...

We Recommend These Vendors and Free Offers

ContainerizeThis 2016 is a free, 2-day conference for all things containers and big data. Featured, will be presentations and free, hands-on workshops. Learn more at ContainerizeThis.com

Launch an SSD VPS in Europe, USA, Asia & Australia on Vultr's KVM-based Cloud platform starting at $5:00/month (15 GB SSD, 768 MB of RAM).

Deploy an SSD Cloud server in 55 seconds on DigitalOcean. Built for developers and starting at $5:00/month (20 GB SSD, 512 MB of RAM).

Want to become an expert ethical hacker and penetration tester? Request your free video training course of Online Penetration Testing and Ethical Hacking

Whether you're new to Linux or are a Linux guru, you can learn a lot more about the Linux kernel by requesting your free ebook of Linux Kernel In A Nutshell.


5 Comments

  1. In any case it is not a problem on the live distro and it is not a problem for the forensic tools. 😉

  2. On the first issue I have to investigate (how can I reproduce it?), on the second one, it’s not important, I forgot to rename that dir, only this 😉

  3. Thanks a lot for your review 😉 I’m taking notes as you suggested 🙂

Leave a Comment

Your email address will not be published. Required fields are marked *

*