LiveSearch


  • Features of LiveSearch:
  • Support collecting digital evidence from machine in operation running Win98/ME/XP/NT 4.0/Windows 2000/Windows 2003/Windows Vista/Windows 7/Windows 8 and all distribution of Linux.
  • When arriving the scene some target evidence may be in operation, we have to perserve the volatile data as soon as possible, our tools support collecting digital evidence as follows:
  • System Date and timezone
  • Current network connection
  • Current network settings and routing table
  • Temporary NetBIOS name table
  • Current TCP and UDP port listening
  • Which program use those listening TCP or UDP port
  • Current login account
  • Current running process
  • Current running service
  • Current opened files
  • Schedule jobs
  • Memory dump
  • more...