update The Sleuth Kit V-4.0.0.

The Sleuth Kitis an open source forensic toolkit for analyzing Microsoft and UNIX file systems and disks.  The Sleuth Kit enables investigators to identify and recover evidence from images acquired during incident response or from live systems.  The Sleuth Kit is open source, which allows investigators to verify the actions of the tool or customize it to specific needs.—————- VERSION 4.0.0 ————–
New Features:
– Added multithreaded support
– Added C++ wrapper classes
– Added JNI bindings / Java data model classes
– 3314047: Added utf8-specific versions of ‘toid’ methods for img,vs,fs types
– 3184429: More consistent printing of unset times (all zerso instead of 1970)
– New database design that allows for multiple images in the same database
– GPT volume system tries other sector sizes if first attempt fails.
– Added hash calculation and lookup to AutoDB and JNI.
– Upgraded SQLite to 3.7.9.
– Added Framework in (windows-only)
– EnCase hash support
– Libewf v2 support (it is now non-beta)
– First file in a raw split or E01 can be specified and the rest of the files
are found.
– mactime displays times as 0 if the time is not set (isntead of 1970)Download : sleuthkit-win32-4.0.0.zip (7.5 MB)
Find Other version |
Read more in here : http://www.sleuthkit.org/sleuthkit
Our post before : http://www.seclist.us/sleuth-kit-v-400-beta-1-released.html